ГлавнаяУязвимости → CVE-2024-1488
8высокая

CVE-2024-1488

→ есть в БДУ: BDU:2024-06601 (на русском)
Описание (на английском; русское — в БДУ выше)

A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. If a process can connect over localhost to port 8953, it can alter the configuration of unbound.service. This flaw allows an unprivileged attacker to manipulate a running instance, potentially altering forwarders, allowing them to track all queries forwarded by the local resolver, and, in some cases, disrupting resolving altogether.

Затрагиваемое ПО
Fedoraproject UnboundRedhat Codeready linux builderRedhat Codeready linux builder eusRedhat Codeready linux builder eus for power little endianRedhat Codeready linux builder for arm64Redhat Codeready linux builder for arm64 eusRedhat Codeready linux builder for ibm z systemsRedhat Codeready linux builder for ibm z systems eusRedhat Enterprise linuxRedhat Enterprise linux eusRedhat Enterprise linux for arm 64Redhat Enterprise linux for arm 64 eusRedhat Enterprise linux for ibm z systemsRedhat Enterprise linux for ibm z systems eusRedhat Enterprise linux for power little endianRedhat Enterprise linux for power little endian eusRedhat Enterprise linux server ausRedhat Enterprise linux server for power little endian update services for sap solutionsRedhat Enterprise linux server tus
CVSS
Балл8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Источники
https://access.redhat.com/errata/RHSA-2024:1750https://access.redhat.com/errata/RHSA-2024:1751https://access.redhat.com/errata/RHSA-2024:1780https://access.redhat.com/errata/RHSA-2024:1801https://access.redhat.com/errata/RHSA-2024:1802https://access.redhat.com/errata/RHSA-2024:1804https://access.redhat.com/errata/RHSA-2024:2587https://access.redhat.com/errata/RHSA-2024:2696