CVE-2022-33990

2022-08-1512:10:15

mitre

www.cve.org

cve-2022-33990

dproxy nexgen

cache poisoning

special domain name characters

misinterpretation

ip addresses

EPSS

0.001

Percentile

45.0%

JSON

Misinterpretation of special domain name characters in dproxy-nexgen (aka dproxy nexgen) leads to cache poisoning because domain names and their associated IP addresses are cached in their misinterpreted form.

References

sourceforge.net/projects/dproxy/

www.openwall.com/lists/oss-security/2022/08/14/3

www.usenix.org/conference/usenixsecurity21/presentation/jeitner

www.usenix.org/conference/usenixsecurity22/presentation/jeitner

EPSS

0.001

Percentile

45.0%

JSON

Related for CVELIST:CVE-2022-33990