CVE-2026-14361 PUBLISHED

Consul-template is vulnerable to path redirection in writeToFile through symlink attack

Assigner: HashiCorp
Reserved: 01.07.2026 Published: 08.07.2026 Updated: 08.07.2026

The consul-template library before version 0.42.1 is vulnerable to a path redirection issue in the writeToFile template helper that may allow template output to be written outside the intended directory or to overwrite an existing file. This vulnerability (CVE-2026-14361) is fixed in consul-template 0.42.1.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
CVSS Score: 4.7

Product Status

Vendor HashiCorp
Product Tooling
Versions Default: unaffected
  • affected from 0.1.0 to 0.42.1 (excl.)

Credits

  • This issue was reported to HashiCorp by Mohamed Abdelaal (0xmrma).

References

Problem Types

  • CWE-59: Improper Link Resolution Before File Access (Link Following) CWE

Impacts

  • CAPEC-132: Symlink Attack