Insufficient verification of data authenticity in Dnsmasq

#VU49845 Insufficient verification of data authenticity in Dnsmasq

Published: 2021-01-24

Vulnerability identifier: #VU49845

Vulnerability risk: Low

CVSSv3.1: 3.6 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2020-25686

CWE-ID: CWE-345

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
Dnsmasq
Server applications / DNS servers

Vendor:

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to the affected software does not check for an existing pending request for the same name and forwards a new request. A remote attacker can perform a DNS cache poisoning attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

External links
http://ics-cert.us-cert.gov/advisories/icsa-21-019-01
http://www.jsof-tech.com/disclosures/dnspooq/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Dell EMC Data Computing Appliance (DCA)

Moxa AWK-3131A/4131A/1137C/1131A devices update for dnsmasq

Multiple vulnerabilities in QNAP QTS, QuTS hero and QuTScloud

Multiple dnsmasq vulnerabilities in F5 F5OS

Multiple vulnerabilities in dnsmasq implementation in Aruba products

Ubuntu update for dnsmasq

Slackware Linux update for dnsmasq

Debian update for dnsmasq

Multiple vulnerabilities in Red Hat Virtualization for RHEL 8

Red Hat Virtualization update for redhat-virtualization-host