PT-2022-11600 · Unknown · Kapetan Dns
Published
2022-12-18
·
Updated
2022-12-22
·
CVE-2021-4248
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
kapetan dns versions up to 6.1.0
Description
A vulnerability was found in the DNS/Protocol/Request.cs file, leading to insufficient entropy in prng. The attack may be launched remotely. The issue is rated as problematic.
Recommendations
For kapetan dns versions up to 6.1.0, upgrade to version 7.0.0 to address the issue.
Fix
Use of Insufficiently Random Values
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Kapetan Dns