Lucene search

MitreCVELIST:CVE-2020-36517

HistoryMar 07, 2022 - 9:08 p.m.

CVE-2020-36517

2022-03-0721:08:01

mitre

www.cve.org

cve-2020-36517

information leak

nabu casa home assistant operating system

home assistant supervised 2022.03

dns operator

internal network resources

hardcoded dns resolver configuration

EPSS

0.003

Percentile

69.5%

JSON

An information leak in Nabu Casa Home Assistant Operating System and Home Assistant Supervised 2022.03 allows a DNS operator to gain knowledge about internal network resources via the hardcoded DNS resolver configuration.

References

community.home-assistant.io/t/ha-os-dns-setting-configuration-not-respected/356572

github.com/home-assistant/plugin-dns/issues/17

github.com/home-assistant/plugin-dns/issues/20

github.com/home-assistant/plugin-dns/issues/22

github.com/home-assistant/plugin-dns/issues/50

github.com/home-assistant/plugin-dns/issues/51

github.com/home-assistant/plugin-dns/issues/53

github.com/home-assistant/plugin-dns/issues/54

github.com/home-assistant/plugin-dns/issues/6

github.com/home-assistant/plugin-dns/issues/64

github.com/home-assistant/plugin-dns/issues/70

github.com/home-assistant/plugin-dns/pull/55

github.com/home-assistant/plugin-dns/pull/56

github.com/home-assistant/plugin-dns/pull/58

github.com/home-assistant/plugin-dns/pull/59

EPSS

0.003

Percentile

69.5%

JSON

Related for CVELIST:CVE-2020-36517