Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2019-19331

Опубликовано: 16 дек. 2019
Источник: nvd
CVSS3: 7.5
CVSS3: 7.5
CVSS2: 5
EPSS Низкий

Описание

knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A records can be squashed into one DNS message (limit is 64kB).

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:nic:knot_resolver:*:*:*:*:*:*:*:*
Версия до 4.3.0 (исключая)
Конфигурация 2
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

EPSS

Процентиль: 54%
0.00312
Низкий

7.5 High

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-407
CWE-404

Связанные уязвимости

ubuntu логотип

CVE-2019-19331

CVSS3: 7.5
ubuntu
около 6 лет назад

knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A records can be squashed into one DNS message (limit is 64kB).

debian логотип

CVE-2019-19331

CVSS3: 7.5
debian
около 6 лет назад

knot-resolver before version 4.3.0 is vulnerable to denial of service ...

github логотип

GHSA-9f7v-8m4p-pv76

CVSS3: 7.5
github
больше 3 лет назад

knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A records can be squashed into one DNS message (limit is 64kB).

EPSS

Процентиль: 54%
0.00312
Низкий

7.5 High

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-407
CWE-404