CVE-2022-38178
CVSS v3.1
7.5 (High)
EPSS
0.45 % (75th)
Affected Products
4
Advisories
27
By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode available memory to the point where named crashes for lack of resources.
Weaknesses
- CWE-401
- Missing Release of Memory after Effective Lifetime
- CVE Status
- PUBLISHED
- CNA
- Internet Systems Consortium (ISC)
- Published Date
-
2022-09-21 11:15:09
(2 years ago) - Updated Date
-
2023-11-07 03:50:04
(10 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...