CVE-2020-8623
CVSS v3.1
7.5 (High)
CVSS v2.0
4.3 (Medium)
EPSS
2.44 % (90th)
Affected Products
7
Advisories
16
In BIND 9.10.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.10.5-S1 -> 9.11.21-S1 of the BIND 9 Supported Preview Edition, An attacker that can reach a vulnerable system with a specially crafted query packet can trigger a crash. To be vulnerable, the system must: * be running BIND that was built with "--enable-native-pkcs11" * be signing one or more zones with an RSA key * be able to receive queries from a possible attacker
Weaknesses
- CWE-617
- Reachable Assertion
- CVE Status
- PUBLISHED
- CNA
- Internet Systems Consortium (ISC)
- Published Date
-
2020-08-21 21:15:12
(4 years ago) - Updated Date
-
2023-11-07 03:26:38
(10 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
|
Configuration #6
|
Configuration #7
|
Configuration #8
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...