Lucene search
Redhat.comRH:CVE-2018-21029HistoryNov 12, 2019 - 8:37 p.m.
CVE-2018-21029
2019-11-1220:37:25
redhat.com
access.redhat.com
11
0.008 Low
EPSS
Percentile
81.9%
A flaw in systemd-resolved was found to incorrectly verify certificates of a DNS resolver used for DNS Over TLS when the DNSOverTLS option is set to yes. A remote attacker in the network path between the vulnerable system and the DNS resolver may use this flaw to perform a man-in-the-middle attack and eavesdrop or modify DNS queries and responses. The attacker can learn the sites visited by a victim user, or redirect the victim user to malicious sites.
Related
ubuntucve
ubuntucve
CVE-2018-21029
2019-10-30 00:00:00
cvelist
cvelist
CVE-2018-21029
2019-10-30 21:46:51
symantec
symantec
systemd CVE-2018-21029 Certificate Validation Security Bypass Vulnerability
2019-10-30 00:00:00
nessus
nessus
Fedora 31 : systemd (2019-4c3ce3aa5c)
2019-11-21 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: systemd-243.4-1.fc31
2019-11-21 01:27:06
prion
prion
Input validation
2019-10-30 22:15:00
nvd
nvd
CVE-2018-21029
2019-10-30 22:15:10
debiancve
debiancve
CVE-2018-21029
2019-10-30 22:15:10
cve
cve
CVE-2018-21029
2019-10-30 22:15:10
cbl_mariner
cbl_mariner
CVE-2018-21029 affecting package systemd 239-44
2020-09-09 06:09:21
openvas
openvas
Fedora Update for systemd FEDORA-2019-4c3ce3aa5c
2020-01-09 00:00:00