Lucene search
MitreVULNRICHMENT:CVE-2023-28452HistorySep 18, 2024 - 12:00 a.m.
CVE-2023-28452
2024-09-1800:00:00
mitre
github.com
coredns
vulnerability
dns resolving
AI Score
7
Confidence
High
EPSS
0.001
Percentile
17.7%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
An issue was discovered in CoreDNS through 1.10.1. There is a vulnerability in DNS resolving software, which triggers a resolver to ignore valid responses, thus causing denial of service for normal resolution. In an exploit, the attacker could just forge a response targeting the source port of a vulnerable resolver without the need to guess the correct TXID.
Related
osv
osv
CoreDNS vulnerable to TuDoor Attacks in github.com/coredns/coredns
2024-09-25 17:42:57
CoreDNS vulnerable to TuDoor Attacks
2024-09-18 15:30:52
Security update for coredns
2024-09-27 14:01:32
cvelist
cvelist
CVE-2023-28452
2024-09-18 00:00:00
cve
cve
CVE-2023-28452
2024-09-18 15:15:13
nvd
nvd
CVE-2023-28452
2024-09-18 15:15:13
github
github
CoreDNS vulnerable to TuDoor Attacks
2024-09-18 15:30:52
nessus
nessus
openSUSE 15 Security Update : coredns (openSUSE-SU-2024:0319-1)
2024-09-28 00:00:00
AI Score
7
Confidence
High
EPSS
0.001
Percentile
17.7%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-28452