AZL-6389 CVE-2020-15112 affecting package etcd for versions less than 3.5.0-3

🗓️ 05 Aug 2020 20:15:14Reported by GoogleType

osv🔗 osv.dev👁 1 Views

Etcd vulnerability before 3.5.0-3 allows entry index overflow in ReadAll, causing panic during consensus.

Reporter	Title	Published	Views	Family All 101
IBM Security Bulletins	Security Bulletin: IBM API Connect is vulnerable to denial of service (DoS) via etcd (CVE-2020-15106 CVE-2020-15112 CVE-2020-15113)	2 Feb 202113:37	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM® Db2® On Openshift and IBM® Db2® and Db2 Warehouse® on Cloud Pak for Data	29 Jun 202217:05	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in go.etcd.io/etcd package affects IBM Watson Machine Learning Accelerator on Cloud Pak for Data	6 Dec 202316:17	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Private is vulnerable to etcd vulnerabilities (CVE-2020-15106, CVE-2020-15112, CVE-2020-15113)	26 Feb 202114:21	–	ibm
IBM Security Bulletins	Security Bulletin: Open Source Dependency Vulnerability	15 May 202318:36	–	ibm
ALT Linux	Security fix for the ALT Linux 10 package etcd version 3.4.13-alt1	5 Sep 202000:00	–	altlinux
ATTACKERKB	CVE-2020-15112	5 Aug 202020:15	–	attackerkb
CBLMariner	CVE-2020-15112 affecting package etcd for versions less than 3.5.0-3	9 Apr 202206:52	–	cbl_mariner
Tenable Nessus	CentOS 7 : etcd (RHSA-2021:1407)	9 Oct 202400:00	–	nessus
Tenable Nessus	Fedora 32 : etcd (2020-cd43b84c16)	4 Jan 202100:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2020-15112

21 Apr 2026 04:32Current

6.9Medium risk

Vulners AI Score6.9

CVSS 3.16.5

EPSS0.00113