CVE-2023-50387

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 14, 2024
Updated: Mar 7, 2024
CWE ID 770

Summary

CVE-2023-50387, also known as the "KeyTrap" issue, is a vulnerability in certain aspects of DNSSEC in the DNS protocol. It affects various products, including those with the following aliases: ['bkJtwg', 'bkJtwh', 'bkJtwi', 'bkJtwj', 'bkJtwk', 'bkJtwl', 'bkJtwm', 'bkJtwn', 'bkJtwo', 'bkJtwp', 'bkJtwq', 'bkJtwr', 'bkJtws', 'bkJtwt', 'bkJtwu', 'bkJtwv', and more]. This vulnerability allows remote attackers to cause a denial of service (CPU consumption) by sending one or more DNSSEC responses. To remediate this issue, organizations should consider updating their systems with the latest patches and applying any relevant security configurations. The potential danger posed by this vulnerability is high, as it can lead to a significant impact on an organization's availability. The National Vulnerability Database (NVD) has assigned a base severity score of 7.5 (High) to this vulnerability.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-50387 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options