7.5
CVE-2025-13878
- EPSS 0.04%
- Veröffentlicht 21.01.2026 14:43:27
- Zuletzt bearbeitet 15.04.2026 00:35:42
- Quelle security-officer@isc.org
- CVE-Watchlists
- Unerledigt
Malformed BRID/HHIT records can cause named to terminate unexpectedly
Malformed BRID/HHIT records can cause `named` to terminate unexpectedly. This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerISC
≫
Produkt
BIND 9
Default Statusunaffected
Version <=
9.18.43
Version
9.18.40
Status
affected
Version <=
9.20.17
Version
9.20.13
Status
affected
Version <=
9.21.16
Version
9.21.12
Status
affected
Version <=
9.18.43-S1
Version
9.18.40-S1
Status
affected
Version <=
9.20.17-S1
Version
9.20.13-S1
Status
affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.04% | 0.131 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security-officer@isc.org | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-617 Reachable Assertion
The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.