CVE-2020-15113
published 2020-08-05CVE-2020-15113: In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (etcd data directory and the directory path when provided to automatically…
PriorityP433high7.1CVSS 3.1
AVLACLPRLUINSUCHIHAN
EPSS
0.23%
13.6th percentile
In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients) with restricted access permissions (700) by using the os.MkdirAll. This function does not perform any permission checks when a given directory path exists already. A possible workaround is to ensure the directories have the desired permission (700).
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | etcd | < etcd 3.3.25+dfsg-5 (bookworm) | etcd 3.3.25+dfsg-5 (bookworm) |
| etcd-io | etcd | < 3.3.23 | 3.3.23 |
| etcd-io | etcd | < 3.4.10 | 3.4.10 |
| etcd | etcd | < 3.3.23 | 3.3.23 |
| etcd | etcd | >= 0 < 3.3.25+dfsg-5 | 3.3.25+dfsg-5 |
| etcd | etcd | >= 0 < 3.3.25+dfsg-5 | 3.3.25+dfsg-5 |
| etcd | etcd | >= 0 < 3.3.25+dfsg-5 | 3.3.25+dfsg-5 |
| etcd | etcd | >= 0 < 3.3.25+dfsg-5 | 3.3.25+dfsg-5 |
| etcd | etcd | >= 0 < 3.2.26+dfsg-6ubuntu0.1 | 3.2.26+dfsg-6ubuntu0.1 |
| etcd | etcd | >= 0 < 3.2.17+dfsg-1ubuntu0.1~esm1 | 3.2.17+dfsg-1ubuntu0.1~esm1 |
| etcd | etcd | >= 3.4.0 < 3.4.10 | 3.4.10 |
| fedoraproject | fedora | — | — |
| github.com | etcd-io_etcd | >= 0 < 3.3.23 | 3.3.23 |
| github.com | etcd-io_etcd | >= 3.4.0-rc.0 < 3.4.10 | 3.4.10 |
| msrc | cbl2_etcd_3.5.0-3_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
CVSS provenance
nvdv3.17.1HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
nvdv2.03.6LOWAV:L/AC:L/Au:N/C:P/I:P/A:N
osv7.1HIGH
vendor_msrc7.1HIGH
vendor_ubuntu6.5MEDIUM
vendor_debian5.7MEDIUM
vendor_redhat5.7MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
etcd vulnerabilities
vendor_ubuntu·2022-09-22·CVSS 6.5
CVE-2020-15113 [MEDIUM] etcd vulnerabilities
Title: etcd vulnerabilities
Summary: Several security issues were fixed in etcd.
It was discovered that etcd incorrectly handled certain specially crafted
WAL files. An attacker could possibly use this issue to cause a denial of
service. (CVE-2020-15106, CVE-2020-15112)
It was discovered that etcd incorrectly handled directory permissions when
trying to create a directory that exists already. An attacker could
possibly use this issue to obtain sensitive information. (CVE-2020-15113)
It was discovered that etcd incorrectly handled endpoint setup. An
attacker could possibly use this issue to cause a denial of
service. (CVE-2020-15114)
Instructions: In general, a standard system update will make all the necessary changes.
Ubuntu
etcd vulnerabilities
vendor_ubuntu·2022-09-22·CVSS 6.5
CVE-2020-15113 [MEDIUM] etcd vulnerabilities
Title: etcd vulnerabilities
Summary: Several security issues were fixed in etcd.
USN-5628-1 fixed vulnerabilities in etcd.
This update provides the corresponding updates for Ubuntu 18.04 ESM.
Original advisory details:
It was discovered that etcd incorrectly handled certain specially crafted
WAL files. An attacker could possibly use this issue to cause a denial of
service. (CVE-2020-15106, CVE-2020-15112)
It was discovered that etcd incorrectly handled directory permissions when
trying to create a directory that exists already. An attacker could
possibly use this issue to obtain sensitive information. (CVE-2020-15113)
It was discovered that etcd incorrectly handled endpoint setup. An
attacker could possibly use this issue to cause a denial of
service. (CVE-2020-15114)
Instructions:
Microsoft
Improper Preservation of Permissions in etcd
vendor_msrc·2020-08-11·CVSS 7.1
CVE-2020-15113 [MEDIUM] CWE-281 Improper Preservation of Permissions in etcd
Improper Preservation of Permissions in etcd
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this.
Mariner: Mariner
GitHub_M: GitHub_M
Customer Action Required: Yes
Remediation: CBL-Mariner Releases
Reference: https://learn.micr
Red Hat
etcd: directories created via os.MkdirAll are not checked for permissions
vendor_redhat·2020-08-05·CVSS 5.7
CVE-2020-15113 [MEDIUM] CWE-285 etcd: directories created via os.MkdirAll are not checked for permissions
etcd: directories created via os.MkdirAll are not checked for permissions
In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients) with restricted access permissions (700) by using the os.MkdirAll. This function does not perform any permission checks when a given directory path exists already. A possible workaround is to ensure the directories have the desired permission (700).
A flaw was found in etcd. Certain directory paths are created with restricted access permissions (700) by using the os.MkdirAll. This function does not perform any permission checks when a given directory path exists already.
Statement: In Red Hat Ope
Debian
CVE-2020-15113: etcd - In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (...
vendor_debian·2020·CVSS 5.7
CVE-2020-15113 [MEDIUM] CVE-2020-15113: etcd - In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (...
In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients) with restricted access permissions (700) by using the os.MkdirAll. This function does not perform any permission checks when a given directory path exists already. A possible workaround is to ensure the directories have the desired permission (700).
Scope: local
bookworm: resolved (fixed in 3.3.25+dfsg-5)
bullseye: resolved (fixed in 3.3.25+dfsg-5)
forky: resolved (fixed in 3.3.25+dfsg-5)
sid: resolved (fixed in 3.3.25+dfsg-5)
trixie: resolved (fixed in 3.3.25+dfsg-5)
GHSA
Improper Preservation of Permissions in etcd
ghsa·2024-01-30
CVE-2020-15113 [MEDIUM] CWE-281 Improper Preservation of Permissions in etcd
Improper Preservation of Permissions in etcd
### Vulnerability type
Access Controls
### Detail
etcd creates certain directory paths (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients) with restricted access permissions (700) by using the os.MkdirAll. This function does not perform any permission checks when a given directory path exists already.
### Specific Go Package Affected
github.com/etcd-io/etcd/pkg/fileutil
### Workarounds
Make sure these directories have the desired permit (700).
### References
Find out more on this vulnerability in the [security audit report](https://github.com/etcd-io/etcd/blob/master/security/SECURITY_AUDIT.pdf)
### For more information
If you have any questions or com
OSV
Improper Preservation of Permissions in etcd
osv·2024-01-30
CVE-2020-15113 [MEDIUM] Improper Preservation of Permissions in etcd
Improper Preservation of Permissions in etcd
### Vulnerability type
Access Controls
### Detail
etcd creates certain directory paths (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients) with restricted access permissions (700) by using the os.MkdirAll. This function does not perform any permission checks when a given directory path exists already.
### Specific Go Package Affected
github.com/etcd-io/etcd/pkg/fileutil
### Workarounds
Make sure these directories have the desired permit (700).
### References
Find out more on this vulnerability in the [security audit report](https://github.com/etcd-io/etcd/blob/master/security/SECURITY_AUDIT.pdf)
### For more information
If you have any questions or com
OSV
etcd vulnerabilities
osv·2022-09-22·CVSS 6.5
CVE-2020-15106 [MEDIUM] etcd vulnerabilities
etcd vulnerabilities
It was discovered that etcd incorrectly handled certain specially crafted
WAL files. An attacker could possibly use this issue to cause a denial of
service. (CVE-2020-15106, CVE-2020-15112)
It was discovered that etcd incorrectly handled directory permissions when
trying to create a directory that exists already. An attacker could
possibly use this issue to obtain sensitive information. (CVE-2020-15113)
It was discovered that etcd incorrectly handled endpoint setup. An
attacker could possibly use this issue to cause a denial of
service. (CVE-2020-15114)
OSV
etcd vulnerabilities
osv·2022-09-22·CVSS 6.5
CVE-2020-15106 [MEDIUM] etcd vulnerabilities
etcd vulnerabilities
USN-5628-1 fixed vulnerabilities in etcd.
This update provides the corresponding updates for Ubuntu 18.04 ESM.
Original advisory details:
It was discovered that etcd incorrectly handled certain specially crafted
WAL files. An attacker could possibly use this issue to cause a denial of
service. (CVE-2020-15106, CVE-2020-15112)
It was discovered that etcd incorrectly handled directory permissions when
trying to create a directory that exists already. An attacker could
possibly use this issue to obtain sensitive information. (CVE-2020-15113)
It was discovered that etcd incorrectly handled endpoint setup. An
attacker could possibly use this issue to cause a denial of
service. (CVE-2020-15114)
OSV
CVE-2020-15113: In etcd before versions 3
osv·2020-08-05·CVSS 7.1
CVE-2020-15113 [HIGH] CVE-2020-15113: In etcd before versions 3
In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients) with restricted access permissions (700) by using the os.MkdirAll. This function does not perform any permission checks when a given directory path exists already. A possible workaround is to ensure the directories have the desired permission (700).
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2020-15113 etcd: directories created via os.MkdirAll are not checked for permissions
bugzilla·2020-08-14·CVSS 5.7
CVE-2020-15113 [MEDIUM] CVE-2020-15113 etcd: directories created via os.MkdirAll are not checked for permissions
CVE-2020-15113 etcd: directories created via os.MkdirAll are not checked for permissions
In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients) with restricted access permissions (700) by using the os.MkdirAll. This function does not perform any permission checks when a given directory path exists already. A possible workaround is to ensure the directories have the desired permission (700).
References:
https://github.com/etcd-io/etcd/security/advisories/GHSA-chh6-ppwq-jh92
Discussion:
Created etcd tracking bugs for this issue:
Affects: fedora-all [bug 1868871]
---
Patched versions
3.4.10, 3.3.23
---
Care is needs to
Bugzilla
CVE-2020-15113 etcd: directories created via os.MkdirAll are not checked for permissions [fedora-all]
bugzilla·2020-08-14·CVSS 5.7
CVE-2020-15113 [MEDIUM] CVE-2020-15113 etcd: directories created via os.MkdirAll are not checked for permissions [fedora-all]
CVE-2020-15113 etcd: directories created via os.MkdirAll are not checked for permissions [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects mul
https://github.com/etcd-io/etcd/security/advisories/GHSA-chh6-ppwq-jh92https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L6B6R43Y7M3DCHWK3L3UVGE2K6WWECMP/https://github.com/etcd-io/etcd/security/advisories/GHSA-chh6-ppwq-jh92https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L6B6R43Y7M3DCHWK3L3UVGE2K6WWECMP/
2020-08-05
Published