Unauthorized Access Vulnerability in ETCD

Note:
This topic has been translated from a Chinese forum by GPT and might contain errors.

Original topic: ETCD未授权访问漏洞

| username: dengqee

There is currently an unauthorized access vulnerability in etcd, posing a security risk. We hope the official website can fix it as soon as possible.

| username: realcp1018 | Original post link

This requires enabling TLS component security authentication.

| username: zhanggame1 | Original post link

Do you have a vulnerability scan report? Can you share a screenshot?

| username: Billmay表妹 | Original post link

Reinforcement plan: Enable TLS or prohibit public access to etcd-related ports

Two solutions:

  1. Enable TLS. Unauthorized direct access to the ETCD port will not retrieve any data. This can completely solve the issue and is supported by our product.

  2. Implement ACL access control, allowing access only to specific IPs. This can also prevent unauthorized access to the port.

| username: ShawnYan | Original post link

Supplementary link

| username: zhanggame1 | Original post link

If the scan misses it, you can only open the system firewall to block this port.

| username: system | Original post link

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.