Описание
Authentication vulnerability found in Etcd-io v.3.4.10 allows remote attackers to escalate privileges via the debug function.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| etcd | fixed | 3.4.30-1 | package | |
| etcd | ignored | bookworm | package | |
| etcd | no-dsa | bullseye | package | |
| etcd | no-dsa | buster | package |
Примечания
https://github.com/etcd-io/etcd/pull/15648
https://github.com/etcd-io/etcd/pull/15655
https://github.com/etcd-io/etcd/commit/1f746597ea6ce9f0a4554108bc853f256e150b0b (v3.4.25)
https://github.com/etcd-io/etcd/commit/3618ab4b07cc9c0883b6a642da198877e25d612b (v3.4.25)
EPSS
Связанные уязвимости
Authentication vulnerability found in Etcd-io v.3.4.10 allows remote attackers to escalate privileges via the debug function.
Authentication vulnerability found in Etcd-io v.3.4.10 allows remote attackers to escalate privileges via the debug function.
Authentication vulnerability found in Etcd-io v.3.4.10 allows remote attackers to escalate privileges via the debug function.
EPSS