What is CVE-2022-1183?

CVE-2022-1183 is a high-severity vulnerability in Isc Bind9. CVSS score: 7.5/10. Published 2022-05-19.

How severe is CVE-2022-1183?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Isc Bind9

CVE-2022-1183

On vulnerable configurations, the named daemon may, in some circumstances, terminate with an assertion failure. Vulnerable configurations are those that include a reference to http within the listen-on statements in their named.conf. TLS i…

EPSS: 0.004 (60.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Isc Bind9 — versions Open Source Branch 9.18 9.18.0 through versions before 9.18.3, Development Branch 9.19 9.19.0

References

kb.isc.org/docs/cve-2022-1183 (x_refsource_CONFIRM)
security.netapp.com/advisory/ntap-20220707-0002/ (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2022-1183?: CVE-2022-1183 is a high-severity vulnerability in Isc Bind9. CVSS score: 7.5/10. Published 2022-05-19.
How severe is CVE-2022-1183?: High severity. CVSS v3 base score is 7.5 out of 10.