Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-33655

Опубликовано: 06 июн. 2024
Источник: debian
EPSS Низкий

Описание

The DNS protocol in RFC 1035 and updates allows remote attackers to cause a denial of service (resource consumption) by arranging for DNS queries to be accumulated for seconds, such that responses are later sent in a pulsing burst (which can be considered traffic amplification in some cases), aka the "DNSBomb" issue.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
unboundfixed1.20.0-1package
unboundignoredbookwormpackage
unboundignoredbullseyepackage
unboundignoredbusterpackage

Примечания

  • https://nlnetlabs.nl/downloads/unbound/CVE-2024-33655.txt

  • Fixed by: https://github.com/NLnetLabs/unbound/commit/c3206f4568f60c486be6d165b1f2b5b254fea3de (release-1.20.0rc1)

EPSS

Процентиль: 86%
0.02839
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2024-33655

CVSS3: 7.5
ubuntu
около 1 года назад

The DNS protocol in RFC 1035 and updates allows remote attackers to cause a denial of service (resource consumption) by arranging for DNS queries to be accumulated for seconds, such that responses are later sent in a pulsing burst (which can be considered traffic amplification in some cases), aka the "DNSBomb" issue.

redhat логотип

CVE-2024-33655

CVSS3: 3.7
redhat
около 1 года назад

The DNS protocol in RFC 1035 and updates allows remote attackers to cause a denial of service (resource consumption) by arranging for DNS queries to be accumulated for seconds, such that responses are later sent in a pulsing burst (which can be considered traffic amplification in some cases), aka the "DNSBomb" issue.

nvd логотип

CVE-2024-33655

CVSS3: 7.5
nvd
около 1 года назад

The DNS protocol in RFC 1035 and updates allows remote attackers to cause a denial of service (resource consumption) by arranging for DNS queries to be accumulated for seconds, such that responses are later sent in a pulsing burst (which can be considered traffic amplification in some cases), aka the "DNSBomb" issue.

msrc логотип

CVE-2024-33655

CVSS3: 7.5
msrc
8 месяцев назад

Описание отсутствует

github логотип

GHSA-2xh4-pf7v-vh6h

CVSS3: 7.5
github
около 1 года назад

The DNS protocol in RFC 1035 and updates allows remote attackers to cause a denial of service (resource consumption) by arranging for DNS queries to be accumulated for seconds, such that responses are later sent in a pulsing burst (which can be considered traffic amplification in some cases), aka the "DNSBomb" issue.

EPSS

Процентиль: 86%
0.02839
Низкий