Lucene search

[email protected]CVE-2021-25215

HistoryApr 29, 2021 - 1:15 a.m.

CVE-2021-25215

2021-04-2901:15:08

CWE-617

[email protected]

web.nvd.nist.gov

682

cve-2021-25215

bind

named process

vulnerability

assertion check

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.4 Medium

AI Score

Confidence

High

0.067 Low

EPSS

Percentile

93.9%

JSON

In BIND 9.0.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a query for a record triggering the flaw described above, the named process will terminate due to a failed assertion check. The vulnerability affects all currently maintained BIND 9 branches (9.11, 9.11-S, 9.16, 9.16-S, 9.17) as well as all other versions of BIND 9.

Affected configurations

NVD

Node

debiandebian_linuxMatch9.0

debiandebian_linuxMatch10.0

Node

iscbindRange9.0.0–9.11.31-

iscbindRange9.12.0–9.16.15-

iscbindRange9.17.0–9.17.12-

iscbindMatch9.9.3s1supported_preview

iscbindMatch9.9.12s1supported_preview

iscbindMatch9.9.13s1supported_preview

iscbindMatch9.10.5s1supported_preview

iscbindMatch9.10.7s1supported_preview

iscbindMatch9.11.3s1supported_preview

iscbindMatch9.11.5s3supported_preview

iscbindMatch9.11.5s5supported_preview

iscbindMatch9.11.5s6supported_preview

iscbindMatch9.11.6s1supported_preview

iscbindMatch9.11.7s1supported_preview

iscbindMatch9.11.8s1supported_preview

iscbindMatch9.11.12s1supported_preview

iscbindMatch9.11.21s1supported_preview

iscbindMatch9.11.27s1supported_preview

iscbindMatch9.11.29s1supported_preview

iscbindMatch9.16.8s1supported_preview

iscbindMatch9.16.11s1supported_preview

iscbindMatch9.16.13s1supported_preview

Node

fedoraprojectfedoraMatch33

fedoraprojectfedoraMatch34

Node

netappactive_iq_unified_managerMatch-vmware_vsphere

netappcloud_backupMatch-

Node

netapph300s_firmwareMatch-

AND

netapph300sMatch-

Node

netapph500s_firmwareMatch-

AND

netapph500sMatch-

Node

netapph700s_firmwareMatch-

AND

netapph700sMatch-

Node

netapph300e_firmwareMatch-

AND

netapph300eMatch-

Node

netapph500e_firmwareMatch-

AND

netapph500eMatch-

Node

netapph700e_firmwareMatch-

AND

netapph700eMatch-

Node

netapph410s_firmwareMatch-

AND

netapph410sMatch-

Node

netappa250_firmwareMatch-

AND

netappa250Match-

Node

netapp500f_firmwareMatch-

AND

netapp500fMatch-

Node

oracletekelec_platform_distributionRange7.4.0–7.7.1

Node

siemenssinec_infrastructure_network_servicesRange<1.0.1.1

CPENameOperatorVersion
debian:debian_linuxdebian debian linuxeq9.0
debian:debian_linuxdebian debian linuxeq10.0

CPE	Name	Operator	Version
debian:debian_linux	debian debian linux	eq	9.0
debian:debian_linux	debian debian linux	eq	10.0

CNA Affected

[
  {
    "product": "BIND9",
    "vendor": "ISC",
    "versions": [
      {
        "status": "affected",
        "version": "Open Source Branches 9.0 through 9.11 9.0.0 through versions before 9.11.30"
      },
      {
        "status": "affected",
        "version": "Open Source Branches 9.12 through 9.16 9.12.0 through versions before 9.16.14"
      },
      {
        "status": "affected",
        "version": "Supported Preview Branches 9.9-S through 9.11-S 9.9.3-S1 through versions before 9.11.30-S1"
      },
      {
        "status": "affected",
        "version": "Supported Preview Branch 9.16-S 9.16.8-S1 through versions before 9.16.14-S1"
      },
      {
        "status": "affected",
        "version": "Development Branch 9.17 9.17.0 through versiosn before 9.17.12"
      }
    ]
  }
]