CVE-2026-44283

NONE

etcd: Read access via PrevKv in etcd transactions may bypass RBAC authorization checks

Title source: cna

Description

etcd is a distributed key-value store for the data of a distributed system. Prior to 3.4.44, 3.5.30, and 3.6.11, a vulnerability in etcd allows read access via PrevKv, or lease attachment in Put requests within transaction operations, to bypass RBAC authorization checks. An authenticated user without sufficient read or lease-related permissions may be able to access unauthorized data or attach leases by invoking transaction operations with these features enabled. This vulnerability is fixed in 3.4.44, 3.5.30, and 3.6.11.

References (1)

Core 1

Core References

X_Refsource_Confirm x_refsource_confirm

https://github.com/etcd-io/etcd/security/advisories/GHSA-x35m-3gp4-4fh5

Scores

CVSS v3 0.0

EPSS 0.0022

EPSS Percentile 12.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-863

Status published

Products (7)

etcd/etcd < 3.4.44

etcd/v3 3.5.0 - 3.5.30Go

etcd/v3 3.6.0 - 3.6.11Go

etcd-io/etcd < 3.4.44

etcd-io/etcd >= 3.5.0, <= 3.5.29

etcd-io/etcd >= 3.6.0, <= 3.6.10

go.etcd.io/etcd 0 - 3.4.44Go

Published May 14, 2026

Tracked Since May 14, 2026