CVE-2025-5994

EPSS 0.08%
Veröffentlicht 16.07.2025 14:38:22
Zuletzt bearbeitet 03.11.2025 19:16:14
Quelle sep@nlnetlabs.nl
CVE-Watchlists
Login
Unerledigt
Login

A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet (ECS). Unbound is also vulnerable when compiled with ECS support, i.e., '--enable-subnet', AND configured to send ECS information along with queries to upstream name servers, i.e., at least one of the 'send-client-subnet', 'client-subnet-zone' or 'client-subnet-always-forward' options is used. Resolvers supporting ECS need to segregate outgoing queries to accommodate for different outgoing ECS information. This re-opens up resolvers to a birthday paradox attack (Rebirthday Attack) that tries to match the DNS transaction ID in order to cache non-ECS poisonous replies.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerNLnet Labs

≫

Produkt Unbound

Default Statusunaffected

Version < 1.23.0

Version 1.6.2

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.08%	0.247

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
sep@nlnetlabs.nl	8.7	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:U/V:C/RE:X/U:X

CWE-349 Acceptance of Extraneous Untrusted Data With Trusted Data

The product, when processing trusted data, accepts any untrusted data that is also included with the trusted data, treating the untrusted data as if it were trusted.

https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt

https://lists.debian.org/debian-lts-announce/2025/08/msg00019.html

https://nvd.nist.gov/vuln/detail/CVE-2025-5994

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-5994

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-5994

EUVD