1. Home
  2. Vulnerabilities
  3. CVE-2021-25215

CVE-2021-25215

CVSS v3.1 7.5 (High)
75% Progress
CVSS v2.0 5 (Medium)
50% Progress
EPSS 6.74 % (94th)
6.74% Progress
Affected Products 25
Advisories 23
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

In BIND 9.0.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a query for a record triggering the flaw described above, the named process will terminate due to a failed assertion check. The vulnerability affects all currently maintained BIND 9 branches (9.11, 9.11-S, 9.16, 9.16-S, 9.17) as well as all other versions of BIND 9.

Weaknesses
CWE-617
Reachable Assertion
CVE Status
PUBLISHED
CNA
Internet Systems Consortium (ISC)
Published Date
2021-04-29 01:15:08
(3 years ago)
Updated Date
2023-11-07 03:31:24
(10 months ago)

Affected Products

Debian

Fedoraproject

Isc

Netapp

Oracle

Siemens

Configuration #1

    CPE23 From Up To
  Debian Linux 9.0 cpe:2.3:o:debian:debian_linux:9.0
  Debian Linux 10.0 cpe:2.3:o:debian:debian_linux:10.0

Configuration #2

    CPE23 From Up To
  Isc Bind from 9.0.0 version and prior 9.11.31 version cpe:2.3:a:isc:bind::*:*:*:- >= 9.0.0 < 9.11.31
  Isc Bind from 9.12.0 version and prior 9.16.15 version cpe:2.3:a:isc:bind::*:*:*:- >= 9.12.0 < 9.16.15
  Isc Bind from 9.17.0 version and prior 9.17.12 version cpe:2.3:a:isc:bind::*:*:*:- >= 9.17.0 < 9.17.12
  Isc Bind 9.9.3 S1 cpe:2.3:a:isc:bind:9.9.3:s1:*:*:supported_preview
  Isc Bind 9.9.12 S1 cpe:2.3:a:isc:bind:9.9.12:s1:*:*:supported_preview
  Isc Bind 9.9.13 S1 cpe:2.3:a:isc:bind:9.9.13:s1:*:*:supported_preview
  Isc Bind 9.10.5 S1 cpe:2.3:a:isc:bind:9.10.5:s1:*:*:supported_preview
  Isc Bind 9.10.7 S1 cpe:2.3:a:isc:bind:9.10.7:s1:*:*:supported_preview
  Isc Bind 9.11.3 S1 cpe:2.3:a:isc:bind:9.11.3:s1:*:*:supported_preview
  Isc Bind 9.11.5 S3 cpe:2.3:a:isc:bind:9.11.5:s3:*:*:supported_preview
  Isc Bind 9.11.5 S5 cpe:2.3:a:isc:bind:9.11.5:s5:*:*:supported_preview
  Isc Bind 9.11.5 S6 cpe:2.3:a:isc:bind:9.11.5:s6:*:*:supported_preview
  Isc Bind 9.11.6 S1 cpe:2.3:a:isc:bind:9.11.6:s1:*:*:supported_preview
  Isc Bind 9.11.7 S1 cpe:2.3:a:isc:bind:9.11.7:s1:*:*:supported_preview
  Isc Bind 9.11.8 S1 cpe:2.3:a:isc:bind:9.11.8:s1:*:*:supported_preview
  Isc Bind 9.11.12 S1 cpe:2.3:a:isc:bind:9.11.12:s1:*:*:supported_preview
  Isc Bind 9.11.21 S1 cpe:2.3:a:isc:bind:9.11.21:s1:*:*:supported_preview
  Isc Bind 9.11.27 S1 cpe:2.3:a:isc:bind:9.11.27:s1:*:*:supported_preview
  Isc Bind 9.11.29 S1 cpe:2.3:a:isc:bind:9.11.29:s1:*:*:supported_preview
  Isc Bind 9.16.8 S1 cpe:2.3:a:isc:bind:9.16.8:s1:*:*:supported_preview
  Isc Bind 9.16.11 S1 cpe:2.3:a:isc:bind:9.16.11:s1:*:*:supported_preview
  Isc Bind 9.16.13 S1 cpe:2.3:a:isc:bind:9.16.13:s1:*:*:supported_preview

Configuration #3

    CPE23 From Up To
  Fedoraproject Fedora 33 cpe:2.3:o:fedoraproject:fedora:33
  Fedoraproject Fedora 34 cpe:2.3:o:fedoraproject:fedora:34

Configuration #4

    CPE23 From Up To
  Netapp Active Iq Unified Manager for Vmware Vsphere cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere
  Netapp Cloud Backup cpe:2.3:a:netapp:cloud_backup:-

Configuration #5

AND
    CPE23 From Up To
OR  
  Netapp H300s Firmware cpe:2.3:o:netapp:h300s_firmware:-
OR  
  Running on/with
  Netapp H300s cpe:2.3:h:netapp:h300s:-

Configuration #6

AND
    CPE23 From Up To
OR  
  Netapp H500s Firmware cpe:2.3:o:netapp:h500s_firmware:-
OR  
  Running on/with
  Netapp H500s cpe:2.3:h:netapp:h500s:-

Configuration #7

AND
    CPE23 From Up To
OR  
  Netapp H700s Firmware cpe:2.3:o:netapp:h700s_firmware:-
OR  
  Running on/with
  Netapp H700s cpe:2.3:h:netapp:h700s:-

Configuration #8

AND
    CPE23 From Up To
OR  
  Netapp H300e Firmware cpe:2.3:o:netapp:h300e_firmware:-
OR  
  Running on/with
  Netapp H300e cpe:2.3:h:netapp:h300e:-

Configuration #9

AND
    CPE23 From Up To
OR  
  Netapp H500e Firmware cpe:2.3:o:netapp:h500e_firmware:-
OR  
  Running on/with
  Netapp H500e cpe:2.3:h:netapp:h500e:-

Configuration #10

AND
    CPE23 From Up To
OR  
  Netapp H700e Firmware cpe:2.3:o:netapp:h700e_firmware:-
OR  
  Running on/with
  Netapp H700e cpe:2.3:h:netapp:h700e:-

Configuration #11

AND
    CPE23 From Up To
OR  
  Netapp H410s Firmware cpe:2.3:o:netapp:h410s_firmware:-
OR  
  Running on/with
  Netapp H410s cpe:2.3:h:netapp:h410s:-

Configuration #12

AND
    CPE23 From Up To
OR  
  Netapp A250 Firmware cpe:2.3:o:netapp:a250_firmware:-
OR  
  Running on/with
  Netapp A250 cpe:2.3:h:netapp:a250:-

Configuration #13

AND
    CPE23 From Up To
OR  
  Netapp 500f Firmware cpe:2.3:o:netapp:500f_firmware:-
OR  
  Running on/with
  Netapp 500f cpe:2.3:h:netapp:500f:-

Configuration #14

    CPE23 From Up To
  Oracle Tekelec Platform Distribution from 7.4.0 version and 7.7.1 and prior versions cpe:2.3:a:oracle:tekelec_platform_distribution >= 7.4.0 <= 7.7.1

Configuration #15

    CPE23 From Up To
  Siemens Sinec Infrastructure Network Services prior 1.0.1.1 version cpe:2.3:a:siemens:sinec_infrastructure_network_services < 1.0.1.1