Please read https://github.com/etcd-io/etcd/blob/main/security/README.md.
Security: etcd-io/etcd
Security
.github/SECURITY.md
-
Nested etcd transactions bypass RBAC authorization checksGHSA-rfx7-8w68-q57q published
Mar 20, 2026 by ahrtrLow -
Authorization bypasses in multiple APIsGHSA-q8m4-xhhv-38mg published
Mar 20, 2026 by ahrtrModerate -
Key name can be accessed via LeaseTimeToLive APIGHSA-3p4g-rcw5-8298 published
May 11, 2023 by mitakeLow -
TOCTOU of gateway endpoint authenticationGHSA-h8g9-6gvh-5mrc published
Aug 5, 2020 by spzalaLow -
Gateway TLS authentication only applies to endpoints detected in DNS SRV recordsGHSA-wr2v-9rpq-c35q published
Aug 5, 2020 by spzalaModerate -
Gateway TLS endpoint validation only confirms TCP reachabilityGHSA-j86v-2vjr-fg8f published
Aug 5, 2020 by spzalaModerate -
Gateway can include itself as an endpoint resulting in resource exhaustionGHSA-2xhq-gv6c-p224 published
Aug 5, 2020 by spzalaHigh -
User credentials are stored in WAL logs in plaintextGHSA-528j-9r78-wffx published
Aug 5, 2020 by spzalaLow -
No minimum password lengthGHSA-4993-m7g5-r9hh published
Aug 5, 2020 by spzalaModerate -
Insecure ciphers are allowed by defaultGHSA-5x4g-q5rc-36jp published
Aug 5, 2020 by spzalaLow
Learn more about advisories related to etcd-io/etcd in the GitHub Advisory Database