Vulnerability DatabaseCVE-2021-28235

CVE-2021-28235:
etcd vulnerability analysis and mitigation

Overview

An authentication vulnerability was discovered in Etcd-io version 3.4.10 that allows remote attackers to escalate privileges through the debug function. The vulnerability was assigned CVE-2021-28235 and was publicly disclosed in April 2023 (NVD).

Technical details

The vulnerability has been assigned a CVSS v3.1 base score of 9.8 (CRITICAL) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. The issue is classified as CWE-287 (Improper Authentication). The vulnerability can only be triggered when three specific conditions are met: authentication is enabled, log level is set to 'debug', and clients send authentication requests to etcdserver with username & password (GitHub PR).

Impact

The vulnerability allows remote attackers to escalate privileges, potentially gaining unauthorized access to critical system resources. Given etcd's role in storing critical data for distributed systems, particularly in Kubernetes environments, this vulnerability could have significant security implications for affected deployments (NVD).

Mitigation and workarounds

The vulnerability has been fixed in multiple versions through a security patch that clears passwords after authentication. The fix was implemented in pull request #15648 and backported to versions 3.4 and 3.5. Users are advised to upgrade to patched versions of etcd (GitHub PR).

Additional resources

Source: This report was generated using AI

View vulnerable instances

Not a Wiz customer? See which CVEs are exploitable in your environment.

Get a CVE Assessment

9.8

Score

Published April 4, 2023

Severity CRITICAL

CNA Score N/A

Affected Technologies

etcd
Linux Red Hat

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 62.5

Exploitation Probability (EPSS) 0.4

Affected packages and libraries

etcdctl
calico-felix

Sources

NVD
CBL-Mariner
- CBL-Mariner 2.0 Severity CRITICALHas FixAdded at: Jun 10, 2023
Debian Security Tracker
- Debian 10, 11 Severity MEDIUMNo FixAdded at: Apr 22, 2023
- Debian 13 Severity CRITICALHas FixAdded at: Jun 11, 2023
- Debian 14 Severity CRITICALHas FixAdded at: Aug 10, 2025
Echo
- Echo Severity CRITICALHas FixAdded at: Nov 18, 2025
GitHub Advisory Database
- GoLang Severity CRITICALHas FixAdded at: May 10, 2023
Homebrew
- Homebrew Severity CRITICALNo FixAdded at: Feb 12, 2024
Nix
- Nix Severity CRITICALNo FixAdded at: Nov 01, 2023
Photon Security Advisory
- Photon 3.0 Severity CRITICALHas FixAdded at: May 15, 2023
- Photon 4.0 Severity CRITICALHas FixAdded at: May 17, 2023
- Photon 5.0 Severity CRITICALHas FixAdded at: Jul 23, 2023
Red Hat Errata
- Red Hat 7 Severity HIGHNo FixAdded at: Apr 09, 2023
Ubuntu Security Tracker
- Ubuntu 18.04, 22.10, 23.04 Severity MEDIUMHas FixAdded at: Jun 29, 2023
- Ubuntu 20.04, 22.04 Severity MEDIUMHas FixAdded at: Nov 14, 2023

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

Request assessment

Related etcd vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-30204	HIGH	7.5	Docker	openshift4::ose-libvirt-machine-controllers-rhel9@sha256:7231771722e3fd577d9ab773e46fd5a13c22738fe5a5bb5445ab3d69282051d4_s390x	No	Yes	Mar 21, 2025
CVE-2023-45288	HIGH	7.5	cAdvisor	aws-flb-kinesis	No	Yes	Apr 04, 2024
CVE-2024-24786	HIGH	7.5	cAdvisor	kubeflow-pipelines	No	Yes	Mar 05, 2024
CVE-2024-23327	HIGH	7.5	NixOS	envoy	No	Yes	Feb 09, 2024
CVE-2024-51744	LOW	3.1	Docker	azure-aad-pod-identity-mic	No	Yes	Nov 04, 2024