CVE-2021-22884

Exploit

EPSS 0.27%
Published 03.03.2021 18:15:14
Last modified 21.11.2024 05:50:50
Source support@hackerone.com
Teams watchlist Login
Open Login

Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to DNS rebinding attacks as the whitelist includes “localhost6”. When “localhost6” is not present in /etc/hosts, it is just an ordinary domain that is resolved via DNS, i.e., over network. If the attacker controls the victim's DNS server or can spoof its responses, the DNS rebinding protection can be bypassed by using the “localhost6” domain. As long as the attacker uses the “localhost6” domain, they can still apply the attack described in CVE-2018-7160.

Affected products Warnungen 0 Metrics 3 CWE 1 References 15

Data is provided by the National Vulnerability Database (NVD)

Nodejs ≫ Node.Js SwEditionlts Version >= 10.0.0 < 10.24.0

Nodejs ≫ Node.Js SwEditionlts Version >= 12.0.0 < 12.21.0

Nodejs ≫ Node.Js SwEditionlts Version >= 14.0.0 < 14.16.0

Nodejs ≫ Node.Js SwEdition- Version >= 15.0.0 < 15.10.0

Fedoraproject ≫ Fedora Version32

Fedoraproject ≫ Fedora Version33

Fedoraproject ≫ Fedora Version34

Netapp ≫ Active Iq Unified Manager Version- SwPlatformvmware_vsphere

Netapp ≫ Active Iq Unified Manager Version- SwPlatformwindows

Netapp ≫ E-series Performance Analyzer Version-

Netapp ≫ Oncommand Insight Version-

Netapp ≫ Oncommand Workflow Automation Version-

Netapp ≫ Snapcenter Version-

Oracle ≫ Graalvm Version19.3.5 SwEditionenterprise

Oracle ≫ Graalvm Version20.3.1.2 SwEditionenterprise

Oracle ≫ Graalvm Version21.0.0.2 SwEditionenterprise

Oracle ≫ Jd Edwards Enterpriseone Tools Version < 9.2.6.0

Oracle ≫ Mysql Cluster Version <= 8.0.25

Oracle ≫ Nosql Database Version < 20.3

Oracle ≫ Peoplesoft Enterprise Peopletools Version8.58

Oracle ≫ Peoplesoft Enterprise Peopletools Version8.59

Siemens ≫ Sinec Infrastructure Network Services Version < 1.0.1.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.27%	0.503

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	1.6	5.9	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov	5.1	4.9	6.4	AV:N/AC:H/Au:N/C:P/I:P/A:P

CWE-350 Reliance on Reverse DNS Resolution for a Security-Critical Action

The product performs reverse DNS resolution on an IP address to obtain the hostname and make a security decision, but it does not properly ensure that the IP address is truly associated with the hostname.

https://www.oracle.com//security-alerts/cpujul2021.html

Patch

Third Party Advisory

https://www.oracle.com/security-alerts/cpuoct2021.html

Patch

Third Party Advisory

https://www.oracle.com/security-alerts/cpuApr2021.html

Patch

Third Party Advisory

https://security.netapp.com/advisory/ntap-20210723-0001/

Third Party Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf