Vulnerabilities > CVE-2022-3488 - Reachable Assertion vulnerability in ISC Bind

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

isc

CWE-617

NVD

Published: 2023-01-26

Updated: 2023-11-07

Summary

Processing of repeated responses to the same query, where both responses contain ECS pseudo-options, but where the first is broken in some way, can cause BIND to exit with an assertion failure. 'Broken' in this context is anything that would cause the resolver to reject the query response, such as a mismatch between query and answer name. This issue affects BIND 9 versions 9.11.4-S1 through 9.11.37-S1 and 9.16.8-S1 through 9.16.36-S1.

Vulnerable Configurations

Part	Description	Count
Application	Isc ISC Bind 9.16.8 ISC Bind 9.11.37 ISC Bind 9.16.36 ISC Bind 9.11.4	4

Common Weakness Enumeration (CWE)

CWE-617 - Reachable Assertion

References

https://kb.isc.org/docs/cve-2022-3488

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Related news

References