Systemd-resolved: unsigned name response in signed zone is not refused when dnssec=yes
CVE-2023-7008

5.9MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 9; Cryostat 2
Vendor: CVE Published:; 23 December 2023

Summary

A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles (or the upstream DNS resolver) to manipulate records.

Affected Version(s)

Red Hat Enterprise Linux 8 0:239-82.el8

Red Hat Enterprise Linux 9 0:252-32.el9_4

References

https://access.redhat.com/errata/RHSA-2024:2463

vendor-advisoryx_refsource_REDHAT

https://access.redhat.com/errata/RHSA-2024:3203

vendor-advisoryx_refsource_REDHAT

https://access.redhat.com/security/cve/CVE-2023-7008

vdb-entryx_refsource_REDHAT

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 23, 2023
Vulnerability Reserved
Dec 20, 2023

Collectors

NVD DatabaseMitre Database