Vulnerability CVE-2021-25220

Vulnerability Name:

CVE-2021-25220 (CCN-221991)

Assigned:

2021-01-15

Published:

2022-03-16

Updated:

2022-11-28

Summary:

BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 -> 9.11.36-S1 9.16.8-S1 -> 9.16.26-S1 Versions of BIND 9 earlier than those shown - back to 9.1.0, including Supported Preview Editions - are also believed to be affected but have not been tested as they are EOL. The cache could become poisoned with incorrect records leading to queries being made to the wrong servers, which might also result in false information being returned to clients.

CVSS v3 Severity:

6.8 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N)
5.9 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): High User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

6.8 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N)
5.9 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): High User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

6.8 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N)
5.9 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): High User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

CVSS v2 Severity:

4.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

6.8 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:C/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Complete Availibility (A): None

Vulnerability Type:

CWE-444

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2021-25220

Source: security-officer@isc.org
Type: Patch, Third Party Advisory
security-officer@isc.org

Source: XF
Type: UNKNOWN
isc-bind-cve202125220-sec-bypass(221991)

Source: CCN
Type: ISC Web site
CVE-2021-25220: DNS forwarders - cache poisoning vulnerability

Source: security-officer@isc.org
Type: Mitigation, Vendor Advisory
security-officer@isc.org

Source: security-officer@isc.org
Type: Mailing List, Third Party Advisory
security-officer@isc.org

Source: security-officer@isc.org
Type: Mailing List, Third Party Advisory
security-officer@isc.org

Source: security-officer@isc.org
Type: Mailing List, Third Party Advisory
security-officer@isc.org

Source: security-officer@isc.org
Type: Mailing List, Third Party Advisory
security-officer@isc.org

Source: security-officer@isc.org
Type: Mailing List, Third Party Advisory
security-officer@isc.org

Source: security-officer@isc.org
Type: Third Party Advisory
security-officer@isc.org

Source: security-officer@isc.org
Type: Third Party Advisory
security-officer@isc.org

Source: CCN
Type: IBM Security Bulletin 6595155 (i)
IBM i is vulnerable to denial of service and cache poisoning attacks due to flaws in ISC BIND (CVE-2022-0396, CVE-2021-25220)

Source: CCN
Type: IBM Security Bulletin 6607880 (AIX)
AIX is vulnerable to cache poisoning due to ISC BIND (CVE-2021-25220)

Vulnerable Configuration:

Configuration RedHat 1:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

Configuration RedHat 3:

cpe:/a:redhat:enterprise_linux:8::crb:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:8::baseos:*:*:*:*:*

Configuration RedHat 6:

cpe:/a:redhat:enterprise_linux:9:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/a:redhat:enterprise_linux:9::appstream:*:*:*:*:*

Configuration RedHat 8:

cpe:/a:redhat:enterprise_linux:9::crb:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:9:*:*:*:*:*:*:*

Configuration RedHat 10:

cpe:/o:redhat:enterprise_linux:9::baseos:*:*:*:*:*

Configuration RedHat 11:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 12:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 13:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 14:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 15:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:isc:bind:9.12.0:*:*:*:*:*:*:*

OR cpe:/a:isc:bind:9.11.0:*:*:*:*:*:*:*

OR cpe:/a:isc:bind:9.17.0:*:*:*:*:*:*:*

OR cpe:/a:isc:bind:9.16.11:*:*:*:*:*:*:*

OR cpe:/a:isc:bind:9.18.0:*:*:*:*:*:*:*

OR cpe:/a:isc:bind:9.11.36:*:*:*:-:*:*:*

AND

cpe:/o:ibm:aix:7.1:*:*:*:*:*:*:*

OR cpe:/o:ibm:i:7.2:*:*:*:*:*:*:*

OR cpe:/o:ibm:i:7.3:*:*:*:*:*:*:*

OR cpe:/o:ibm:aix:7.2:*:*:*:*:*:*:*

OR cpe:/o:ibm:i:7.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:vios:3.1:*:*:*:*:*:*:*

OR cpe:/o:ibm:aix:7.3:*:*:*:*:*:*:*

OR cpe:/o:ibm:i:7.5:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.redhat.rhsa:def:20230402	P	RHSA-2023:0402: bind security update (Moderate)	2023-01-24
oval:com.redhat.rhsa:def:20228068	P	RHSA-2022:8068: bind security update (Moderate)	2022-11-15
oval:com.redhat.rhsa:def:20228385	P	RHSA-2022:8385: dhcp security and enhancement update (Moderate)	2022-11-15
oval:com.redhat.rhsa:def:20227790	P	RHSA-2022:7790: bind security update (Moderate)	2022-11-08
oval:com.redhat.rhsa:def:20227643	P	RHSA-2022:7643: bind9.16 security update (Important)	2022-11-08
oval:org.opensuse.security:def:685	P	Security update for bind (Important)	2022-08-09
oval:org.opensuse.security:def:94507	P	bind-utils-9.16.20-150400.3.6 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2877	P	bind-utils-9.16.20-150400.3.6 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95099	P	bind-9.16.20-150400.3.6 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:3469	P	bind-9.16.20-150400.3.6 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94506	P	bind-devel-9.16.6-150300.22.16.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2876	P	bind-devel-9.16.6-150300.22.16.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:102259	P	Security update for bind (Important)	2022-03-24
oval:org.opensuse.security:def:99231	P	(Important)	2022-03-24
oval:org.opensuse.security:def:100442	P	(Important)	2022-03-24
oval:org.opensuse.security:def:982	P	Security update for bind (Important)	2022-03-24
oval:org.opensuse.security:def:99505	P	(Important)	2022-03-24
oval:org.opensuse.security:def:100776	P	(Important)	2022-03-24
oval:org.opensuse.security:def:1698	P	Security update for bind (Important)	2022-03-24
oval:org.opensuse.security:def:99767	P	(Important)	2022-03-24
oval:org.opensuse.security:def:101674	P	Security update for bind (Important)	2022-03-24
oval:org.opensuse.security:def:100104	P	(Important)	2022-03-24

BACK