CVE-2022-22846

Опубликовано: 10 янв. 2022

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

The dnslib package through 0.9.16 for Python does not verify that the ID value in a DNS reply matches an ID value in a query.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	needs-triage
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
focal	ignored	end of standard support, was needs-triage
hirsute	ignored	end of life
impish	ignored	end of life
jammy	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2022-22846

EPSS

Процентиль: 55%

0.0032

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2022-22846

CVSS3: 7.5

nvd

около 4 лет назад

The dnslib package through 0.9.16 for Python does not verify that the ID value in a DNS reply matches an ID value in a query.

CVE-2022-22846

CVSS3: 7.5

debian

около 4 лет назад

The dnslib package through 0.9.16 for Python does not verify that the ...

GHSA-r478-c2pc-m7gx

CVSS3: 7.5

github

около 4 лет назад

dnslib has DNS reply verification issue

EPSS

Процентиль: 55%

0.0032

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2022-22846

Описание

Пакет python-dnslib

Ссылки на источники

Связанные уязвимости