etcd Unauthenticated HTTP API Leak Vulnerability Scanner
An attacker could access sensitive informations using this vulnerability.
Short Info
Level
Critical
Type
Single Scan
Can be used by
Asset Owner
Estimated Time
5 sec
Scan only one
Url
Parent Category
etcd Unauthenticated HTTP API Leak Vulnerability Scanner Detail
The etcd HTTP API is accessible without authentication. This can result in keys being exposed which may contain sensitive information. It will also allow a user to change and delete keys without authentication. As a result, a remote attacker can not only discern sensitive information such as usernames and passwords, but also change or delete that data.
Try it yourself,
control security posture
control security posture