Is CVE-2018-16886 being actively exploited?

It is not currently in CISA's KEV catalog. Its EPSS exploitation probability is 4%.

What products does CVE-2018-16886 affect?

Tracked products affected include etcd. Check the version you run to see whether it is affected.

How do I fix CVE-2018-16886?

Apply the vendor fix promptly. An official patch or advisory is available. Upgrade affected products to a fixed version.

← All products

CVE-2018-16886

Q: What is CVE-2018-16886?

CVE-2018-16886 is a high-severity software vulnerability (Improper authentication) with a CVSS score of 8.1. etcd versions 3.2.x before 3.2.26 and 3.3.x before 3.3.11 are vulnerable to an improper authentication issue when role-based access control (RBAC) is used and client-cert-auth is enabled. If an etcd client server TLS certificate contains a

HIGH severity · CVSS 8.1 · Improper authentication

8.1CVSS HIGH

Summary

etcd versions 3.2.x before 3.2.26 and 3.3.x before 3.3.11 are vulnerable to an improper authentication issue when role-based access control (RBAC) is used and client-cert-auth is enabled. If an etcd client server TLS certificate contains a Common Name (CN) which matches a valid RBAC username, a remote attacker may authenticate as that user with any valid (trusted) client certificate in a REST API request to the gRPC-gateway.

Impact & exploitability

Attack vectorNetwork

Attack complexityHigh

Privileges requiredNone

User interactionNone

Confidentiality impactHigh

Integrity impactHigh

Availability impactHigh

Exploit probability (EPSS)4%

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products we track (1)

etcd

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Official patch: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16886 ↗

CVE-2018-16886

Summary

Impact & exploitability

Affected products we track (1)

Recommendation

Additional information