Add reference for CVE-2021-38698/consul

author: Salvatore Bonaccorso <carnil@debian.org> 2021-10-15 21:54:23 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-10-15 21:54:23 +0200
commit: 61928503bb55dbf272c7f013de8c96a4bf3f1be5 (patch)
tree: f4f904fb4b9fa2f2c3ede1cd97f474d1852ad578 /data/CVE/list.2021
parent: 363e65fd80df8e980a47e59ff277d6a92a4306d0 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index c02eceadbf..43048fc78a 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -8786,6 +8786,7 @@ CVE-2021-38699 (TastyIgniter 3.0.7 allows XSS via /account, /reservation, /admin
 CVE-2021-38698 (HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allow ...)
 	- consul <unfixed>
 	NOTE: https://discuss.hashicorp.com/t/hcsec-2021-24-consul-missing-authorization-check-on-txn-apply-endpoint/29026
+	NOTE: https://github.com/hashicorp/consul/commit/747844bad6410091f2c6e961216c0c5fc285a44d (v1.8.15)
 CVE-2021-38697
 	RESERVED
 CVE-2021-38696
author	Salvatore Bonaccorso <carnil@debian.org>	2021-10-15 21:54:23 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-10-15 21:54:23 +0200
commit	61928503bb55dbf272c7f013de8c96a4bf3f1be5 (patch)
tree	f4f904fb4b9fa2f2c3ede1cd97f474d1852ad578 /data/CVE/list.2021
parent	363e65fd80df8e980a47e59ff277d6a92a4306d0 (diff)