V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsDocs
Back to catalog
BDU:2024-01359
BDU
HighConfirmedExploit available

Уязвимость компонента DNSSEC реализации протокола DNS сервера DNS BIND связана с алгоритмической сложностью и неограниченным распределением…

CVSS
7.5
High
EPSS
0.00
p0
Published
2024-01-01
Updated
2024-01-01
Description

Уязвимость компонента DNSSEC реализации протокола DNS сервера DNS BIND связана с алгоритмической сложностью и неограниченным распределением ресурсов при создании зоны DNS. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании

Tags · CWE
Pre-auth
Affected products
Internet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium BindInternet systems consortium Bind
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Timeline
2024-01-01
Published
2024-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: N
None (N)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: N
None (N)
Integrity Impact
I: N
None (N)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.000 · p0
Known exploited (KEV)
No
Known exploits — Сканер-ВС
CVE-2023-50387
github-poc · https://github.com/Pablodiz/CVE-2023-50387
Enterprise
Affected software
ProductVendorStatus
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
bindinternet systems consortiumTracked
Source databases
BDU
MSR
Related vulnerabilities
CVE-2023-50387
External references
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-50387@https://altsp.su/obnovleniya-bezopasnosti/@https://altsp.su/obnovleniya-bezopasnosti/@https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.10/@http://repo.red-soft.ru/redos/7.3c/x86_64/updates/@https://kb.isc.org/docs/cve-2023-50387@https://security-tracker.debian.org/tracker/CVE-2023-50387@https://access.redhat.com/security/cve/CVE-2023-50387@https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/@https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/@https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/@https://altsp.su/obnovleniya-bezopasnosti/@https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.11.1/@https://abf.rosa.ru/advisories/ROSA-SA-2024-2491@https://abf.rosa.ru/advisories/ROSA-SA-2024-2490@https://abf.rosa.ru/advisories/ROSA-SA-2024-2489@https://abf.rosa.ru/advisories/ROSA-SA-2024-2491@https://abf.rosa.ru/advisories/ROSA-SA-2024-2490@https://abf.rosa.ru/advisories/ROSA-SA-2024-2489@https://abf.rosa.ru/advisories/ROSA-SA-2025-2568@https://abf.rosa.ru/advisories/ROSA-SA-2025-2756@https://abf.rosa.ru/advisories/ROSA-SA-2025-2733@https://wiki.astralinux.ru/astra-linux-se17-bulletin-2025-0319SE17@https://wiki.astralinux.ru/astra-linux-se47-bulletin-2025-0422SE175@https://abf.rosa.ru/advisories/ROSA-SA-2025-2795@https://abf.rosa.ru/advisories/ROSA-SA-2025-2792@https://abf.rosa.ru/advisories/ROSA-SA-2025-2791@https://abf.rosa.ru/advisories/ROSA-SA-2025-2839@https://abf.rosa.ru/advisories/ROSA-SA-2025-2836@https://abf.rosa.ru/advisories/ROSA-SA-2025-2835@https://abf.rosa.ru/advisories/ROSA-SA-2025-2834@https://abf.rosa.ru/advisories/ROSA-SA-2025-3003@https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.14/@https://abf.rosa.ru/advisories/ROSA-SA-2025-3102