← voltar
CVE-2024-0874

Coredns: cd bit response is cached and served later

CVSS 5.3 MEDIUMEPSS 0.8%CWE-524
A flaw was found in coredns. This issue could lead to invalid cache entries returning due to incorrectly implemented caching.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Produtos afetados
corednsRed Hat · Logging Subsystem for Red Hat OpenShiftRed Hat · Red Hat Advanced Cluster Management for Kubernetes 2Red Hat · Red Hat OpenShift Container Platform 4.13Red Hat · Red Hat OpenShift Container Platform 4.14Red Hat · Red Hat OpenShift Container Platform 4.15Red Hat · Red Hat OpenShift Container Platform 4.16

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://access.redhat.com/errata/RHSA-2024:0041https://access.redhat.com/errata/RHSA-2024:4850https://access.redhat.com/errata/RHSA-2024:6009https://access.redhat.com/errata/RHSA-2024:6406https://access.redhat.com/security/cve/CVE-2024-0874https://bugzilla.redhat.com/show_bug.cgi?id=2219234https://github.com/coredns/coredns/issues/6186https://github.com/coredns/coredns/pull/6354