9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.973 High
EPSS
Percentile
99.8%
Performs a domain lookup using the edns-client-subnet option which allows clients to specify the subnet that queries supposedly originate from. The script uses this option to supply a number of geographically distributed locations in an attempt to enumerate as many different address records as possible. The script also supports requests using a given subnet.
The domain to lookup eg. www.example.org
[optional] The number of bits to use as subnet mask (default: 24)
[optional] nameserver to use. (default = host.ip)
The client subnet address to use
nmap -sU -p 53 --script dns-client-subnet-scan --script-args \
'dns-client-subnet-scan.domain=www.example.com, \
dns-client-subnet-scan.address=192.168.0.1 \
[,dns-client-subnet-scan.nameserver=8.8.8.8] \
[,dns-client-subnet-scan.mask=24]' <target>
nmap --script dns-client-subnet-scan --script-args \
'dns-client-subnet-scan.domain=www.example.com, \
dns-client-subnet-scan.address=192.168.0.1 \
dns-client-subnet-scan.nameserver=8.8.8.8, \
[,dns-client-subnet-scan.mask=24]'
53/udp open domain udp-response
| dns-client-subnet-scan:
| www.google.com
| 1.2.3.4
| 5.6.7.8
| 9.10.11.12
| 13.14.15.16
| .
| .
|_ .
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.973 High
EPSS
Percentile
99.8%