DNS rebinding vulnerability found in etcd 3.3.1 and earlier. An attacker can control his DNS records to direct to localhost, and trick the browser into sending requests to localhost (or any other address).
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2018-02-25T00:00:00
Updated: 2019-05-06T05:06:02
Reserved: 2017-12-04T00:00:00
Link: CVE-2018-1099
JSON object: View
NVD Information
Status : Modified
Published: 2018-04-03T16:29:00.297
Modified: 2023-11-07T02:55:49.007
Link: CVE-2018-1099
JSON object: View
Redhat Information
No data.
CWE