1. Home
  2. Vulnerabilities
  3. CVE-2021-25219

CVE-2021-25219

CVSS v3.1 5.3 (Medium)
53% Progress
CVSS v2.0 5 (Medium)
50% Progress
EPSS 0.71 % (81th)
0.71% Progress
Affected Products 23
Advisories 22
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

In BIND 9.3.0 -> 9.11.35, 9.12.0 -> 9.16.21, and versions 9.9.3-S1 -> 9.11.35-S1 and 9.16.8-S1 -> 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response processing can cause degradation in BIND resolver performance. The way the lame cache is currently designed makes it possible for its internal data structures to grow almost infinitely, which may cause significant delays in client query processing.

Weaknesses
CWE-NVD-noinfo
CVE Status
PUBLISHED
CNA
Internet Systems Consortium (ISC)
Published Date
2021-10-27 21:15:07
(2 years ago)
Updated Date
2023-11-07 03:31:25
(10 months ago)

Affected Products

Debian

Fedoraproject

Isc

Netapp

Oracle

Siemens

Configuration #1

    CPE23 From Up To
  Isc Bind from 9.3.0 version and prior 9.11.36 version cpe:2.3:a:isc:bind::*:*:*:- >= 9.3.0 < 9.11.36
  Isc Bind from 9.12.0 version and prior 9.16.22 version cpe:2.3:a:isc:bind::*:*:*:- >= 9.12.0 < 9.16.22
  Isc Bind from 9.17.0 version and prior 9.17.19 version cpe:2.3:a:isc:bind::*:*:*:- >= 9.17.0 < 9.17.19
  Isc Bind 9.9.3 S1 cpe:2.3:a:isc:bind:9.9.3:s1:*:*:supported_preview
  Isc Bind 9.9.12 S1 cpe:2.3:a:isc:bind:9.9.12:s1:*:*:supported_preview
  Isc Bind 9.9.13 S1 cpe:2.3:a:isc:bind:9.9.13:s1:*:*:supported_preview
  Isc Bind 9.10.5 S1 cpe:2.3:a:isc:bind:9.10.5:s1:*:*:supported_preview
  Isc Bind 9.10.7 S1 cpe:2.3:a:isc:bind:9.10.7:s1:*:*:supported_preview
  Isc Bind 9.11.3 S1 cpe:2.3:a:isc:bind:9.11.3:s1:*:*:supported_preview
  Isc Bind 9.11.5 S3 cpe:2.3:a:isc:bind:9.11.5:s3:*:*:supported_preview
  Isc Bind 9.11.5 S5 cpe:2.3:a:isc:bind:9.11.5:s5:*:*:supported_preview
  Isc Bind 9.11.5 S6 cpe:2.3:a:isc:bind:9.11.5:s6:*:*:supported_preview
  Isc Bind 9.11.6 S1 cpe:2.3:a:isc:bind:9.11.6:s1:*:*:supported_preview
  Isc Bind 9.11.7 S1 cpe:2.3:a:isc:bind:9.11.7:s1:*:*:supported_preview
  Isc Bind 9.11.8 S1 cpe:2.3:a:isc:bind:9.11.8:s1:*:*:supported_preview
  Isc Bind 9.11.12 S1 cpe:2.3:a:isc:bind:9.11.12:s1:*:*:supported_preview
  Isc Bind 9.11.21 S1 cpe:2.3:a:isc:bind:9.11.21:s1:*:*:supported_preview
  Isc Bind 9.11.27 S1 cpe:2.3:a:isc:bind:9.11.27:s1:*:*:supported_preview
  Isc Bind 9.11.29 S1 cpe:2.3:a:isc:bind:9.11.29:s1:*:*:supported_preview
  Isc Bind 9.11.35 S1 cpe:2.3:a:isc:bind:9.11.35:s1:*:*:supported_preview
  Isc Bind 9.16.8 S1 cpe:2.3:a:isc:bind:9.16.8:s1:*:*:supported_preview
  Isc Bind 9.16.11 S1 cpe:2.3:a:isc:bind:9.16.11:s1:*:*:supported_preview
  Isc Bind 9.16.13 S1 cpe:2.3:a:isc:bind:9.16.13:s1:*:*:supported_preview
  Isc Bind 9.16.21 S1 cpe:2.3:a:isc:bind:9.16.21:s1:*:*:supported_preview

Configuration #2

    CPE23 From Up To
  Debian Linux 9.0 cpe:2.3:o:debian:debian_linux:9.0
  Debian Linux 10.0 cpe:2.3:o:debian:debian_linux:10.0
  Debian Linux 11.0 cpe:2.3:o:debian:debian_linux:11.0

Configuration #3

    CPE23 From Up To
  Fedoraproject Fedora 33 cpe:2.3:o:fedoraproject:fedora:33
  Fedoraproject Fedora 34 cpe:2.3:o:fedoraproject:fedora:34
  Fedoraproject Fedora 35 cpe:2.3:o:fedoraproject:fedora:35

Configuration #4

AND
    CPE23 From Up To
OR  
  Netapp H300s Firmware cpe:2.3:o:netapp:h300s_firmware:-
OR  
  Running on/with
  Netapp H300s cpe:2.3:h:netapp:h300s:-

Configuration #5

AND
    CPE23 From Up To
OR  
  Netapp H500s Firmware cpe:2.3:o:netapp:h500s_firmware:-
OR  
  Running on/with
  Netapp H500s cpe:2.3:h:netapp:h500s:-

Configuration #6

AND
    CPE23 From Up To
OR  
  Netapp H700s Firmware cpe:2.3:o:netapp:h700s_firmware:-
OR  
  Running on/with
  Netapp H700s cpe:2.3:h:netapp:h700s:-

Configuration #7

AND
    CPE23 From Up To
OR  
  Netapp H300e Firmware cpe:2.3:o:netapp:h300e_firmware:-
OR  
  Running on/with
  Netapp H300e cpe:2.3:h:netapp:h300e:-

Configuration #8

AND
    CPE23 From Up To
OR  
  Netapp H500e Firmware cpe:2.3:o:netapp:h500e_firmware:-
OR  
  Running on/with
  Netapp H500e cpe:2.3:h:netapp:h500e:-

Configuration #9

AND
    CPE23 From Up To
OR  
  Netapp H700e Firmware cpe:2.3:o:netapp:h700e_firmware:-
OR  
  Running on/with
  Netapp H700e cpe:2.3:h:netapp:h700e:-

Configuration #10

AND
    CPE23 From Up To
OR  
  Netapp H410s Firmware cpe:2.3:o:netapp:h410s_firmware:-
OR  
  Running on/with
  Netapp H410s cpe:2.3:h:netapp:h410s:-

Configuration #11

AND
    CPE23 From Up To
OR  
  Netapp H410c Firmware cpe:2.3:o:netapp:h410c_firmware:-
OR  
  Running on/with
  Netapp H410c cpe:2.3:h:netapp:h410c:-

Configuration #12

    CPE23 From Up To
  Netapp Cloud Backup cpe:2.3:a:netapp:cloud_backup:-

Configuration #13

    CPE23 From Up To
  Siemens Sinec Infrastructure Network Services prior 1.0.1.1 version cpe:2.3:a:siemens:sinec_infrastructure_network_services < 1.0.1.1

Configuration #14

    CPE23 From Up To
  Oracle Http Server 12.2.1.3.0 cpe:2.3:a:oracle:http_server:12.2.1.3.0
  Oracle Http Server 12.2.1.4.0 cpe:2.3:a:oracle:http_server:12.2.1.4.0
  Oracle Zfs Storage Appliance Kit 8.8 cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8