CVE-2024-1488
Published: 15 February 2024
A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. If a process can connect over localhost to port 8953, it can alter the configuration of unbound.service. This flaw allows an unprivileged attacker to manipulate a running instance, potentially altering forwarders, allowing them to track all queries forwarded by the local resolver, and, in some cases, disrupting resolving altogether.
Notes
Author | Note |
---|---|
mdeslaur | This is an issue specific to Red Hat packaging, Ubuntu is not affected by this issue. |