Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2020-15136

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS...

6.5CVSS6.8AI score0.01636EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.26 views

Photon OS 4.0: Coredns PHSA-2023-4.0-0420

An update of the coredns package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0420. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.8CVSS7.1AI score0.01636EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.22 views

Photon OS 4.0: Calico PHSA-2023-4.0-0427

An update of the calico package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0427. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.8CVSS8AI score0.02737EPSS
Exploits3References14
SUSE CVE
SUSE CVE
added 2023/02/15 3:57 a.m.1 views

SUSE CVE-2020-15136

In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints...

6.5CVSS8.2AI score0.01636EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2022/04/09 6:52 a.m.40 views

CVE-2020-15136 affecting package etcd for versions less than 3.5.0-3

CVE-2020-15136 affecting package etcd for versions less than 3.5.0-3. An upgraded version of the package is available that resolves this issue...

6.5CVSS7.2AI score0.01636EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/07/27 10:30 p.m.287 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.8.2 bug fix and security update

Red Hat OpenShift Container Platform release 4.8.2 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.8. Red Hat Product Security has rated this update as having a...

9.8CVSS6.8AI score0.95707EPSS
Exploits22References1722
Tenable Nessus
Tenable Nessus
added 2021/03/17 12:0 a.m.44 views

RHEL 8 : Red Hat OpenStack Platform 16.1.4 (etcd) (RHSA-2021:0916)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:0916 advisory. A highly-available key value store for shared configuration. Security Fixes: large slice causes panic in decodeRecord method CVE-2020-15106...

7.7CVSS7.1AI score0.01636EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2021/01/11 12:0 a.m.32 views

Fedora: Security Advisory for etcd (FEDORA-2020-cd43b84c16)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.7CVSS7.2AI score0.01636EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/01/04 12:0 a.m.36 views

Fedora 32 : etcd (2020-cd43b84c16)

Security fix for CVE-2020-15113, CVE-2020-15112, CVE-2020-15114, CVE-2020-15115, CVE-2020-15136, CVE-2020-15106 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format ...

7.7CVSS7AI score0.01636EPSS
Exploits0References7
ALT Linux
ALT Linux
added 2020/09/05 12:0 a.m.39 views

Security fix for the ALT Linux 10 package etcd version 3.4.13-alt1

Sept. 5, 2020 Alexey Shabalin 3.4.13-alt1 - 3.4.13 Fixes: CVE-2020-15106, CVE-2020-15112, CVE-2020-15113, CVE-2020-15114, CVE-2020-15115, CVE-2020-15136...

5.8CVSS7.2AI score0.01636EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/08/20 12:0 a.m.37 views

Photon OS 1.0: Etcd PHSA-2020-1.0-0313

An update of the etcd package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0313. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid139696;...

7.7CVSS7.4AI score0.01636EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2020/08/10 12:0 a.m.37 views

etcd < 3.3.23, 3.4.x < 3.4.10 Multiple Vulnerabilities

etcd is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:etcd:etcd"; if description...

7.7CVSS7.6AI score0.01636EPSS
Exploits0References6
OSV
OSV
added 2020/08/06 11:15 p.m.32 views

CVE-2020-15136

In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints...

6.5CVSS6.6AI score
Exploits0References3
Chainguard
Chainguard
added 2020/08/06 11:15 p.m.38 views

CVE-2020-15136 vulnerabilities

Vulnerabilities for packages: etcd, etcd-fips, dgraph...

6.5CVSS6.8AI score0.01636EPSS
Exploits0
Cvelist
Cvelist
added 2020/08/06 10:45 p.m.33 views

CVE-2020-15136 Improper authentication in etcd

In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints...

6.5CVSS6.8AI score0.01636EPSS
Exploits0References3
CVE
CVE
added 2020/08/06 10:45 p.m.343 views

CVE-2020-15136

CVE-2020-15136 affects etcd gateway behavior: TLS authentication is applied only to endpoints discovered via DNS SRV for a domain, with no authentication for endpoints provided via the --endpoints flag. Root cause is limited endpoint validation in the gateway’s discoverEndpoints flow. Impact: pot...

6.5CVSS6.8AI score0.01636EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder