vulnerability
Amazon Linux AMI: CVE-2023-28450: Security patch for dnsmasq (ALAS-2023-1758)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Mar 15, 2023 | Jun 9, 2023 | May 21, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Mar 15, 2023
Added
Jun 9, 2023
Modified
May 21, 2025
Description
An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020.
Solution
amazon-linux-upgrade-dnsmasq
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.