CNVD-2021-16430 — Vulnetix

CNVD-2021-16430 PUBLISHED

Dnsmasq是一款使用C语言编写的轻量级DNS转发和DHCP、TFTP服务器。 Dnsmasq存在安全漏洞，该漏洞源于在没有dnnssec的情况下编译时使用弱哈希算法(CRC32)来验证DNS响应。目前没有详细的漏洞细节提供。

Affected Products

Vendor	Product	Versions
	Dnsmasq Dnsmasq <2.83

Exploit Intelligence

DNSpooq - dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685) (github-poc-repo)

Timeline

Jan 25, 2021 CVE ID Reserved
Mar 11, 2021 CVE Published

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›