CVE-2022-3080

CVSS v3.1 7.5 (High)

EPSS 0.37 % (73^th)

Affected Products 2

Advisories 17

NVD Status Modified

By sending specific queries to the resolver, an attacker can cause named to crash.

Weaknesses

CWE-613: Insufficient Session Expiration
CWE-NVD-noinfo

CVE Status: PUBLISHED
NVD Status: Modified
CNA: Internet Systems Consortium (ISC)
Published Date: 2022-09-21 11:15:09
(2 years ago)
Updated Date: 2024-07-03 01:38:44
(2 months ago)

Affected Products

Fedoraproject

Fedora

Isc

Bind

Configuration #1

		CPE23	From	Up To
	Isc Bind from 9.16.14 version and prior 9.16.33 version	cpe:2.3:a:isc:bind::::*:-	>= 9.16.14	< 9.16.33
	Isc Bind from 9.18.0 version and prior 9.18.7 version	cpe:2.3:a:isc:bind::::*:-	>= 9.18.0	< 9.18.7
	Isc Bind from 9.19.0 version and prior 9.19.5 version	cpe:2.3:a:isc:bind::::*:-	>= 9.19.0	< 9.19.5
	Isc Bind 9.16.14 S1	cpe:2.3:a:isc:bind:9.16.14:s1:::supported_preview
	Isc Bind 9.16.21 S1	cpe:2.3:a:isc:bind:9.16.21:s1:::supported_preview
	Isc Bind 9.16.32 S1	cpe:2.3:a:isc:bind:9.16.32:s1:::supported_preview

Configuration #2

		CPE23	From	Up To
	Fedoraproject Fedora 35	cpe:2.3:o:fedoraproject:fedora:35
	Fedoraproject Fedora 36	cpe:2.3:o:fedoraproject:fedora:36
	Fedoraproject Fedora 37	cpe:2.3:o:fedoraproject:fedora:37