Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-28235HistoryApr 04, 2023 - 3:15 p.m.
CVE-2021-28235
2023-04-0415:15:08
Debian Security Bug Tracker
security-tracker.debian.org
15
etcd-io v3.4.10
authentication vulnerability
privilege escalation
debug function
unix
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.003 Low
EPSS
Percentile
71.5%
Authentication vulnerability found in Etcd-io v.3.4.10 allows remote attackers to escalate privileges via the debug function.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | etcd | <= 3.4.23-4 | etcd_3.4.23-4_all.deb |
| Debian | 11 | all | etcd | <= 3.3.25+dfsg-6 | etcd_3.3.25+dfsg-6_all.deb |
| Debian | 999 | all | etcd | < 3.4.30-1 | etcd_3.4.30-1_all.deb |
| Debian | 13 | all | etcd | < 3.4.30-1 | etcd_3.4.30-1_all.deb |
Related
openvas
openvas
Ubuntu: Security Advisory (USN-6189-1)
2023-06-28 00:00:00
redhatcve
redhatcve
CVE-2021-28235
2023-04-04 18:13:12
ubuntucve
ubuntucve
CVE-2021-28235
2023-04-04 00:00:00
redos
redos
ROS-20240411-02
2024-04-11 00:00:00
osv
osv
BIT-etcd-2021-28235
2024-03-06 10:52:10
etcd vulnerability
2023-06-28 20:01:23
Etcd-io Improper Authentication vulnerability
2023-04-04 15:30:27
gitlab
gitlab
Improper Authentication
2023-04-04 00:00:00
nvd
nvd
CVE-2021-28235
2023-04-04 15:15:08
ubuntu
ubuntu
etcd vulnerability
2023-06-28 00:00:00
github
github
Etcd-io Improper Authentication vulnerability
2023-04-04 15:30:27
altlinux
altlinux
Security fix for the ALT Linux 10 package etcd version 3.5.8-alt1
2023-04-17 00:00:00
prion
prion
Authentication flaw
2023-04-04 15:15:00
cve
cve
CVE-2021-28235
2023-04-04 15:15:08
veracode
veracode
Privilege Escalation
2023-04-17 12:06:26
ibm
ibm
cbl_mariner
cbl_mariner
CVE-2021-28235 affecting package etcd for versions less than 3.5.4-6
2023-02-14 20:38:30
cvelist
cvelist
CVE-2021-28235
2023-04-04 00:00:00
nessus
nessus
CBL Mariner 2.0 Security Update: etcd (CVE-2021-28235)
2023-04-25 00:00:00
Ubuntu 18.04 ESM / 20.04 ESM / 22.04 ESM / 23.04 : etcd vulnerability (USN-6189-1)
2023-06-28 00:00:00
RHEL 9 : Red Hat OpenStack Platform 17.0 (etcd) (RHSA-2023:3441)
2024-04-28 00:00:00
redhat
redhat
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0505
2023-11-04 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0135
2023-11-03 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0681
2023-11-04 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.003 Low
EPSS
Percentile
71.5%
Related for DEBIANCVE:CVE-2021-28235