BIND 9 named Resc Termination via Malformed NSEC (9.16.8S19.18.15S1)
CVE-2023-2829 Published on June 21, 2023
Malformed NSEC records can cause named to terminate unexpectedly when synth-from-dnssec is enabled
A `named` instance configured to run as a DNSSEC-validating recursive resolver with the Aggressive Use of DNSSEC-Validated Cache (RFC 8198) option (`synth-from-dnssec`) enabled can be remotely terminated using a zone with a malformed NSEC record.
This issue affects BIND 9 versions 9.16.8-S1 through 9.16.41-S1 and 9.18.11-S1 through 9.18.15-S1.
Vulnerability Analysis
CVE-2023-2829 can be exploited with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.
Products Associated with CVE-2023-2829
stack.watch emails you whenever new vulnerabilities are published in ISC BIND or NetApp Active Iq Unified Manager. Just hit a watch button to start following.
Affected Versions
ISC BIND 9:- Version 9.16.8-S1, <= 9.16.41-S1 is affected.
- Version 9.18.11-S1, <= 9.18.15-S1 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.