Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentMitreVULNRICHMENT:CVE-2024-33655
HistoryJun 06, 2024 - 12:00 a.m.

CVE-2024-33655

2024-06-0600:00:00
mitre
github.com
5
denial of service
dns protocol
rfc 1035
remote attackers
traffic amplification
dnsbomb

AI Score

6.8

Confidence

Low

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

partial

JSON

The DNS protocol in RFC 1035 and updates allows remote attackers to cause a denial of service (resource consumption) by arranging for DNS queries to be accumulated for seconds, such that responses are later sent in a pulsing burst (which can be considered traffic amplification in some cases), aka the “DNSBomb” issue.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:technitium:dns_server:*:*:*:*:*:*:*:*"
    ],
    "vendor": "technitium",
    "product": "dns_server",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "versionType": "custom",
        "lessThanOrEqual": "1.19.3"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

Related

thn 1
nessus 12
osv 3
alpinelinux 1
redos 1
openvas 5
amazon 2
veracode 1
ubuntu 1
debiancve 1
mageia 1
fedora 2
cloudfoundry 1
cve 1
ubuntucve 1
cvelist 1
redhatcve 1
nvd 1
photon 3
thn
thn
Researchers Warn of CatDDoS Botnet and DNSBomb DDoS Attack Technique
2024-05-28 10:15:00
nessus
nessus
Amazon Linux 2 : unbound (ALASUNBOUND-2024-001)
2024-05-31 00:00:00
Amazon Linux AMI : unbound (ALAS-2024-1934)
2024-05-13 00:00:00
Fedora 40 : unbound (2024-68626e0eb5)
2024-05-23 00:00:00
osv
osv
CVE-2024-33655
2024-06-06 17:15:51
unbound - security update
2024-06-17 00:00:00
unbound vulnerability
2024-05-28 11:34:52
alpinelinux
alpinelinux
CVE-2024-33655
2024-06-06 17:15:51
redos
redos
ROS-20240918-06
2024-09-18 00:00:00
openvas
openvas
Fedora: Security Advisory (FEDORA-2024-68626e0eb5)
2024-05-27 00:00:00
Mageia: Security Advisory (MGASA-2024-0203)
2024-06-03 00:00:00
Ubuntu: Security Advisory (USN-6791-1)
2024-05-29 00:00:00
amazon
amazon
Important: unbound
2024-05-09 19:16:00
Important: unbound
2024-05-09 17:43:00
veracode
veracode
Denial Of Service(DoS)
2024-05-12 08:51:17
ubuntu
ubuntu
Unbound vulnerability
2024-05-28 00:00:00
debiancve
debiancve
CVE-2024-33655
2024-06-06 17:15:51
mageia
mageia
Updated unbound packages fix security vulnerability
2024-06-02 06:29:33
fedora
fedora
[SECURITY] Fedora 40 Update: unbound-1.20.0-1.fc40
2024-05-23 01:09:16
[SECURITY] Fedora 39 Update: unbound-1.20.0-1.fc39
2024-05-23 01:14:02
cloudfoundry
cloudfoundry
USN-6791-1: Unbound vulnerability | Cloud Foundry
2024-07-25 00:00:00
cve
cve
CVE-2024-33655
2024-06-06 17:15:51
ubuntucve
ubuntucve
CVE-2024-33655
2024-05-10 00:00:00
cvelist
cvelist
CVE-2024-33655
2024-06-06 00:00:00
redhatcve
redhatcve
CVE-2024-33655
2024-05-10 04:24:54
nvd
nvd
CVE-2024-33655
2024-06-06 17:15:51
photon
photon
Important Photon OS Security Update - PHSA-2024-3.0-0789
2024-08-28 00:00:00
Important Photon OS Security Update - PHSA-2024-5.0-0357
2024-08-27 00:00:00
Important Photon OS Security Update - PHSA-2024-4.0-0677
2024-08-28 00:00:00

AI Score

6.8

Confidence

Low

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2024-33655
thn1nessus12osv3alpinelinux1redos1openvas5amazon2veracode1ubuntu1debiancve1mageia1fedora2cloudfoundry1cve1ubuntucve1cvelist1redhatcve1nvd1photon3