Site icon API Security Blog

etcd vulnerable to TOCTOU of gateway endpoint authentication

The vulnerability was spotted due to unclear documentation of how the gateway handles endpoints validation.

### Detail
The gateway only authenticates endpoints detected from DNS SRV records, and it only authenticates the detected endpoints once.Read More

Exit mobile version