CVE-2026-33413
CVE-2026-33413 affects etcd before 3.4.42, 3.5.28, and 3.6.9. Unauthorized users can bypass authentication/authorization on etcd RPCs exposed to untrusted or partially trusted clients, enabling actions such as MemberList (discover cluster topology), Alarm (disruption/DoS), Lease APIs (TTL/lease o...