Assertion Failure in Knot Resolver Affects Network Security Solutions
CVE-2021-40083

7.5HIGH

Key Information:

Vendor: Nic
Status: Knot Resolver
Vendor: CVE Published:; 25 August 2021

What is CVE-2021-40083?

Knot Resolver versions before 5.3.2 are susceptible to an assertion failure vulnerability. This issue arises in specific edge cases where a remote attacker can exploit NSEC3 with excessive iterations utilized for a positive wildcard proof. Such exploitation may lead to stability issues in the resolver, compromising the integrity of network services. It is crucial for users to update to the latest version of Knot Resolver to mitigate potential risks.

References

https://gitlab.nic.cz/knot/knot-resolver/-/merge_requests...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 25, 2021
Vulnerability Reserved
Aug 24, 2021

CVE-2021-40083 Data

JSON

Nic

What is CVE-2021-40083?

References

CVSS V3.1

Timeline