6.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
29.7%
DNS rebinding vulnerability found in etcd 3.3.1 and earlier. An attacker can control his DNS records to direct to localhost, and trick the browser into sending requests to localhost (or any other address).
bugzilla.redhat.com/show_bug.cgi?id=1552717
github.com/coreos/etcd/issues/9353
lists.fedoraproject.org/archives/list/[email protected]/message/JX7QTIT465BQGRGNCE74RATRQLKT2QE4/
lists.fedoraproject.org/archives/list/[email protected]/message/UPGYHMSKDPW5GAMI7BEP3XQRVRLLBJKS/