vulnerability
Amazon Linux AMI: CVE-2020-12662: Security patch for unbound (ALAS-2020-1373)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | May 19, 2020 | Jun 4, 2020 | Jun 4, 2020 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
May 19, 2020
Added
Jun 4, 2020
Modified
Jun 4, 2020
Description
Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.
Solution
amazon-linux-upgrade-unbound
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.