CVE-2019-25031
published 2021-04-27CVE-2019-25031: Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP…
PriorityP430medium5.9CVSS 3.1
AVNACHPRNUINSUCNIHAN
EPSS
1.34%
67.7th percentile
Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session. NOTE: The vendor does not consider this a vulnerability of the Unbound software. create_unbound_ad_servers.sh is a contributed script from the community that facilitates automatic configuration creation. It is not part of the Unbound installation
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | unbound | < unbound 1.9.6-1 (bookworm) | unbound 1.9.6-1 (bookworm) |
| nlnetlabs | unbound | < 1.9.5 | 1.9.5 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
CVSS provenance
nvdv3.15.9MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv5.9MEDIUM
vendor_debian5.9LOW
vendor_redhat5.9MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Unbound vulnerabilities
vendor_ubuntu·2021-05-06
CVE-2019-25031 Unbound vulnerabilities
Title: Unbound vulnerabilities
Summary: Several security issues were fixed in Unbound.
It was discovered that Unbound contained multiple security issues. A
remote attacker could possibly use these issues to cause a denial of
service, inject arbitrary commands, execute arbitrary code, and overwrite
local files.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
unbound: configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session
vendor_redhat·2019-12-11·CVSS 5.9
CVE-2019-25031 [MEDIUM] CWE-20 unbound: configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session
unbound: configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session
Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session. NOTE: The vendor does not consider this a vulnerability of the Unbound software. create_unbound_ad_servers.sh is a contributed script from the community that facilitates automatic configuration creation. It is not part of the Unbound installation
A flaw was found in unbound. The create_unbound_ad_servers.sh bash script does not properly sanitize input data, which is retrieved using an unencrypted, unauthenticated HTTP request, before writing the configuration file allowing a man-in-the-middl
Debian
CVE-2019-25031: unbound - Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers...
vendor_debian·2019·CVSS 5.9
CVE-2019-25031 [MEDIUM] CVE-2019-25031: unbound - Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers...
Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session. NOTE: The vendor does not consider this a vulnerability of the Unbound software. create_unbound_ad_servers.sh is a contributed script from the community that facilitates automatic configuration creation. It is not part of the Unbound installation
Scope: local
bookworm: resolved (fixed in 1.9.6-1)
bullseye: resolved (fixed in 1.9.6-1)
forky: resolved (fixed in 1.9.6-1)
sid: resolved (fixed in 1.9.6-1)
trixie: resolved (fixed in 1.9.6-1)
GHSA
GHSA-9vvw-9wr3-56v3: Unbound before 1
ghsa_unreviewed·2022-05-24
CVE-2019-25031 [MEDIUM] CWE-74 GHSA-9vvw-9wr3-56v3: Unbound before 1
Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session.
OSV
CVE-2019-25031: Unbound before 1
osv·2021-04-27·CVSS 5.9
CVE-2019-25031 [MEDIUM] CVE-2019-25031: Unbound before 1
Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session. NOTE: The vendor does not consider this a vulnerability of the Unbound software. create_unbound_ad_servers.sh is a contributed script from the community that facilitates automatic configuration creation. It is not part of the Unbound installation
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://lists.debian.org/debian-lts-announce/2021/05/msg00007.htmlhttps://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/https://security.netapp.com/advisory/ntap-20210507-0007/https://lists.debian.org/debian-lts-announce/2021/05/msg00007.htmlhttps://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/https://security.netapp.com/advisory/ntap-20210507-0007/
2021-04-27
Published