go.etcd.io/etcd/v3 vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-44283Lowgo.etcd.io/etcd/v3: etcd RBAC bypass allows unauthorized data access via PrevKv/lease attachment in nested transaction Put requestsCVE-2026-33413Highgo.etcd.io/etcd/v3: etcd: Authorization bypasses in multiple APIsCVE-2026-33343Lowgo.etcd.io/etcd/v3: etcd: Nested etcd transactions bypass RBAC authorization checksGHSA-VJG6-93FV-QV64Lowgo.etcd.io/etcd/v3: Etcd auth Inaccurate logging of authentication attempts for users with CN-based auth onlyGHSA-PM3M-32R3-7MFHLowgo.etcd.io/etcd/v3: Etcd embed auto compaction retention negative value causing a compaction loop or a crashGHSA-J86V-2VJR-FG8FMediumgo.etcd.io/etcd/v3: Etcd Gateway TLS endpoint validation only confirms TCP reachabilityCVE-2021-28235Criticalgo.etcd.io/etcd/v3: Etcd-io Improper Authentication vulnerabilityGHSA-H8G9-6GVH-5MRCLowgo.etcd.io/etcd/v3: etcd vulnerable to TOCTOU of gateway endpoint authenticationCVE-2020-15112Mediumgo.etcd.io/etcd/v3: etcd's WAL `ReadAll` method vulnerable to an entry with large index causing panicCVE-2018-16886Highgo.etcd.io/etcd/v3: go.etcd.io/etcd Authentication BypassCVE-2018-1098Highgo.etcd.io/etcd/v3: etcd Cross-site Request Forgery (CSRF)

Stop the waste.
Protect your environment with Kodem.