Insecure configuration in Domain Name Relay Daemon - CVE-2022-33992

 

Insecure configuration in Domain Name Relay Daemon - CVE-2022-33992

Published: August 16, 2022


Vulnerability identifier: #VU66541
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2022-33992
CWE-ID: CWE-16
Exploitation vector: Remote access
Exploit availability: No public exploit available
Vendor: DNRD
Affected software:
Domain Name Relay Daemon

Detailed vulnerability description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to DNRD forwards and caches DNS queries with the CD (aka checking disabled) bit set to 1, which in turn disables DNSSEC protection provided by upstream resolvers and allows to perform DNS cache poisoning.

How to mitigate CVE-2022-33992

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Sources