Lucene search
Veracode Vulnerability DatabaseVERACODE:6213HistoryApr 30, 2018 - 7:01 a.m.
Cross-site Request Forgery (CSRF)
2018-04-3007:01:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.002 Low
EPSS
Percentile
59.5%
github.com/coreos/etcd is vulnerable to cross-site request forgery (CSRF) attacks. The vulnerability exists as there are no host whitelists in place to prevent unauthorized websites from sending unauthorized POST requests to the etcd server.
References
bugzilla.redhat.com/show_bug.cgi?id=1552714
github.com/coreos/etcd/commit/a7e5790c82039945639798ae9a3289fe787f5e56
github.com/coreos/etcd/issues/9353
github.com/coreos/etcd/pull/9372
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JX7QTIT465BQGRGNCE74RATRQLKT2QE4/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPGYHMSKDPW5GAMI7BEP3XQRVRLLBJKS/
Related
redhatcve
redhatcve
CVE-2018-1098
2020-04-07 16:45:05
cve
cve
CVE-2018-1098
2018-04-03 16:29:00
gitlab
gitlab
Cross-Site Request Forgery (CSRF)
2022-02-15 00:00:00
Cross-Site Request Forgery (CSRF)
2022-02-15 00:00:00
debiancve
debiancve
CVE-2018-1098
2018-04-03 16:29:00
cvelist
cvelist
CVE-2018-1098
2018-04-03 16:00:00
prion
prion
Cross site request forgery (csrf)
2018-04-03 16:29:00
osv
osv
CVE-2018-1098
2018-04-03 16:29:00
etcd Cross-site Request Forgery (CSRF)
2022-02-15 01:57:18
nvd
nvd
CVE-2018-1098
2018-04-03 16:29:00
github
github
etcd Cross-site Request Forgery (CSRF)
2022-02-15 01:57:18
ubuntucve
ubuntucve
CVE-2018-1098
2018-04-03 00:00:00
ibm
ibm
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 18:36:46
nessus
nessus
Fedora 30 : etcd (2019-833466697f)
2019-05-02 00:00:00
Fedora 29 : etcd (2019-219b0b0b6a)
2019-05-06 00:00:00
RHEL 7 : etcd (Unpatched Vulnerability)
2024-05-11 00:00:00
openvas
openvas
Fedora Update for etcd FEDORA-2019-219b0b0b6a
2019-05-07 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: etcd-3.3.12-1.20190314gite1ca3b4.fc30
2019-04-13 00:09:57
[SECURITY] Fedora 29 Update: etcd-3.3.12-4.20190413gitf29b1ad.fc29
2019-05-06 04:15:25
altlinux
altlinux
Security fix for the ALT Linux 10 package etcd version 3.4.7-alt1
2020-04-26 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0631
2023-08-11 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0427
2023-07-14 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0608
2023-07-05 00:00:00