CVE-2020-36517

2022-03-0721:08:01

mitre

www.cve.org

0.003 Low

EPSS

Percentile

69.5%

JSON

An information leak in Nabu Casa Home Assistant Operating System and Home Assistant Supervised 2022.03 allows a DNS operator to gain knowledge about internal network resources via the hardcoded DNS resolver configuration.

References

community.home-assistant.io/t/ha-os-dns-setting-configuration-not-respected/356572

github.com/home-assistant/plugin-dns/issues/17

github.com/home-assistant/plugin-dns/issues/20

github.com/home-assistant/plugin-dns/issues/22

github.com/home-assistant/plugin-dns/issues/50

github.com/home-assistant/plugin-dns/issues/51

github.com/home-assistant/plugin-dns/issues/53

github.com/home-assistant/plugin-dns/issues/54

github.com/home-assistant/plugin-dns/issues/6

github.com/home-assistant/plugin-dns/issues/64

github.com/home-assistant/plugin-dns/issues/70

github.com/home-assistant/plugin-dns/pull/55

github.com/home-assistant/plugin-dns/pull/56

github.com/home-assistant/plugin-dns/pull/58

github.com/home-assistant/plugin-dns/pull/59

0.003 Low

EPSS

Percentile

69.5%

JSON

Related for CVELIST:CVE-2020-36517