Lucene search

K

PRIOn knowledge basePRION:CVE-2020-8621

HistoryAug 21, 2020 - 9:15 p.m.

Design/Logic Flaw

2020-08-2121:15:00

PRIOn knowledge base

www.prio-n.com

16

7.2 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.6%

In BIND 9.14.0 -> 9.16.5, 9.17.0 -> 9.17.3, If a server is configured with both QNAME minimization and ‘forward first’ then an attacker who can send queries to it may be able to trigger the condition that will cause the server to crash. Servers that ‘forward only’ are not affected.

CPENameOperatorVersion
ubuntu_linuxeq18.04
ubuntu_linuxeq20.04
ubuntu_linuxeq16.04
bindge9.17.0
bindle9.17.3
bindge9.14.0
bindle9.16.5
leapeq15.1
leapeq15.2
dns_servereq< 2.2.2-5027

References

lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html

lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html

kb.isc.org/docs/cve-2020-8621

security.gentoo.org/glsa/202008-19

security.netapp.com/advisory/ntap-20200827-0003/

usn.ubuntu.com/4468-1/

www.synology.com/security/advisory/Synology_SA_20_19

7.2 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.6%

Related for PRION:CVE-2020-8621

redhatcve1 openvas6 nvd1 cve1 cbl_mariner1 nessus6 alpinelinux1 osv1 debiancve1 ubuntucve1 cvelist1 f51 veracode1 gentoo1 ubuntu1 cisa1 suse2