CVE-2020-15136

2020-08-0623:15:11

Debian Security Bug Tracker

security-tracker.debian.org

ectd

gateway

tls authentication

bypass

versions 3.4.10

3.3.23

dns srv records

endpoints authentication

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

EPSS

0.003

Percentile

69.2%

JSON

In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints function. No authentication is performed against endpoints provided in the --endpoints flag. This has been fixed in versions 3.4.10 and 3.3.23 with improved documentation and deprecation of the functionality.

OSVersionArchitecturePackageVersionFilename
Debian12alletcd< 3.3.25+dfsg-5etcd_3.3.25+dfsg-5_all.deb
Debian11alletcd< 3.3.25+dfsg-5etcd_3.3.25+dfsg-5_all.deb
Debian999alletcd< 3.3.25+dfsg-5etcd_3.3.25+dfsg-5_all.deb
Debian13alletcd< 3.3.25+dfsg-5etcd_3.3.25+dfsg-5_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	etcd	< 3.3.25+dfsg-5	etcd_3.3.25+dfsg-5_all.deb
Debian	11	all	etcd	< 3.3.25+dfsg-5	etcd_3.3.25+dfsg-5_all.deb
Debian	999	all	etcd	< 3.3.25+dfsg-5	etcd_3.3.25+dfsg-5_all.deb
Debian	13	all	etcd	< 3.3.25+dfsg-5	etcd_3.3.25+dfsg-5_all.deb