Vulnerability CVE-2021-28235: Information
Description
Authentication vulnerability found in Etcd-io v.3.4.10 allows remote attackers to escalate privileges via the debug function.
Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
etcd | sisyphus | 3.5.8-alt1 | 3.5.12-alt1 | ALT-PU-2023-1619-1 | 318517 | Fixed |
etcd | sisyphus_riscv64 | 3.5.8-alt1 | 3.5.12-alt1 | ALT-PU-2023-3204-1 | - | Fixed |
etcd | p10 | 3.5.8-alt1 | 3.5.12-alt1 | ALT-PU-2023-1624-1 | 317882 | Fixed |
etcd | c10f1 | 3.5.8-alt1 | 3.5.12-alt1 | ALT-PU-2023-1624-1 | 317882 | Fixed |
etcd | c9f2 | 3.5.9-alt1 | 3.5.9-alt1 | ALT-PU-2023-1931-1 | 322161 | Fixed |
etcd | p11 | 3.5.8-alt1 | 3.5.12-alt1 | ALT-PU-2023-1619-1 | 318517 | Fixed |