| ID |
CVE-2021-25218
|
| Summary |
In BIND 9.16.19, 9.17.16. Also, version 9.16.19-S1 of BIND Supported Preview Edition When a vulnerable version of named receives a query under the circumstances described above, the named process will terminate due to a failed assertion check. The vulnerability affects only BIND 9 releases 9.16.19, 9.17.16, and release 9.16.19-S1 of the BIND Supported Preview Edition. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:isc:bind:9.16.19:*:*:*:-:*:*:*
cpe:2.3:a:isc:bind:9.16.19:*:*:*:-:*:*:*
-
cpe:2.3:a:isc:bind:9.17.16:*:*:*:-:*:*:*
cpe:2.3:a:isc:bind:9.17.16:*:*:*:-:*:*:*
-
cpe:2.3:a:isc:bind:9.17.16:s1:*:*:supported_preview:*:*:*
cpe:2.3:a:isc:bind:9.17.16:s1:*:*:supported_preview:*:*:*
-
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 5.0 (as of 16-09-2021 - 12:30) |
| Impact: | |
| Exploitability: | |
|
| CWE |
CWE-617 |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| NONE |
NONE |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
| Last major update |
16-09-2021 - 12:30 |
| Published |
18-08-2021 - 19:15 |
| Last modified |
16-09-2021 - 12:30 |
