Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2023-5679

Опубликовано: 13 фев. 2024
Источник: nvd
CVSS3: 7.5
EPSS Низкий

Описание

A bad interaction between DNS64 and serve-stale may cause named to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*
Версия от 9.16.12 (включая) до 9.16.45 (включая)
cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*
Версия от 9.18.0 (включая) до 9.18.21 (включая)
cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*
Версия от 9.19.0 (включая) до 9.19.19 (включая)
cpe:2.3:a:isc:bind:9.16.12:s1:*:*:supported_preview:*:*:*
cpe:2.3:a:isc:bind:9.16.13:s1:*:*:supported_preview:*:*:*
cpe:2.3:a:isc:bind:9.16.14:s1:*:*:supported_preview:*:*:*
cpe:2.3:a:isc:bind:9.16.21:s1:*:*:supported_preview:*:*:*
cpe:2.3:a:isc:bind:9.16.32:s1:*:*:supported_preview:*:*:*
cpe:2.3:a:isc:bind:9.16.36:s1:*:*:supported_preview:*:*:*
cpe:2.3:a:isc:bind:9.16.43:s1:*:*:supported_preview:*:*:*
cpe:2.3:a:isc:bind:9.16.45:s1:*:*:supported_preview:*:*:*
cpe:2.3:a:isc:bind:9.18.11:s1:*:*:supported_preview:*:*:*
cpe:2.3:a:isc:bind:9.18.18:s1:*:*:supported_preview:*:*:*
cpe:2.3:a:isc:bind:9.18.21:s1:*:*:supported_preview:*:*:*

EPSS

Процентиль: 32%
0.00118
Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo
CWE-617

Связанные уязвимости

ubuntu логотип

CVE-2023-5679

CVSS3: 7.5
ubuntu
больше 1 года назад

A bad interaction between DNS64 and serve-stale may cause `named` to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1.

redhat логотип

CVE-2023-5679

CVSS3: 7.5
redhat
больше 1 года назад

A bad interaction between DNS64 and serve-stale may cause `named` to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1.

msrc логотип

CVE-2023-5679

CVSS3: 7.5
msrc
7 месяцев назад

Описание отсутствует

debian логотип

CVE-2023-5679

CVSS3: 7.5
debian
больше 1 года назад

A bad interaction between DNS64 and serve-stale may cause `named` to c ...

github логотип

GHSA-v5qp-mx94-j49v

CVSS3: 7.5
github
больше 1 года назад

A bad interaction between DNS64 and serve-stale may cause `named` to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1.

EPSS

Процентиль: 32%
0.00118
Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo
CWE-617