ID CVE-2021-45954
Summary Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called from answer_auth and FuzzAuth). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.
References
Vulnerable Configurations
  • cpe:2.3:a:thekelleys:dnsmasq:2.86:*:*:*:*:*:*:*
    cpe:2.3:a:thekelleys:dnsmasq:2.86:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 21-03-2024 - 02:41)
Impact:
Exploitability:
CWE CWE-787
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
Last major update 21-03-2024 - 02:41
Published 01-01-2022 - 00:15
Last modified 21-03-2024 - 02:41
Back to Top