cbcvebase.
CVE-2008-1637
published 2008-04-02

CVE-2008-1637: PowerDNS Recursor before 3.1.5 uses insufficient randomness to calculate (1) TRXID values and (2) UDP source port numbers, which makes it easier for remote…

PriorityP427medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
3.96%
89.2th percentile
PowerDNS Recursor before 3.1.5 uses insufficient randomness to calculate (1) TRXID values and (2) UDP source port numbers, which makes it easier for remote attackers to poison a DNS cache, related to (a) algorithmic deficiencies in rand and random functions in external libraries, (b) use of a 32-bit seed value, and (c) choice of the time of day as the sole seeding information.

Affected

9 ranges
VendorProductVersion rangeFixed in
debianpdns-recursor< pdns-recursor 3.1.7-1 (bookworm)pdns-recursor 3.1.7-1 (bookworm)
powerdnsrecursor<= 3.1.5
powerdnsrecursor<= 3.1.4
powerdnsrecursor
powerdnsrecursor
powerdnsrecursor
powerdnsrecursor
powerdnsrecursor
powerdnsrecursor

CVSS provenance

nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_debian6.8LOW
vendor_redhat6.8MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.