CVE-2021-22884

Published: Mar 3, 2021Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.6 / Impact: 5.9

Source: NVD

Description

Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to DNS rebinding attacks as the whitelist includes “localhost6”. When “localhost6” is not present in /etc/hosts, it is just an ordinary domain that is resolved via DNS, i.e., over network. If the attacker controls the victim's DNS server or can spoof its responses, the DNS rebinding protection can be bypassed by using the “localhost6” domain. As long as the attacker uses the “localhost6” domain, they can still apply the attack described in CVE-2018-7160.

Affected (22)

Products: Nodejs: Node.js · Fedoraproject: Fedora · Netapp: Active Iq Unified Manager, E Series Performance Analyzer, Oncommand Insight, Oncommand Workflow Automation, Snapcenter · +2 more

Show all products

Nodejs: Node.js · Fedoraproject: Fedora · Netapp: Active Iq Unified Manager, E Series Performance Analyzer, Oncommand Insight, Oncommand Workflow Automation, Snapcenter · Oracle: Graalvm, Jd Edwards Enterpriseone Tools, Mysql Cluster, Nosql Database, Peoplesoft Enterprise Peopletools · Siemens: Sinec Infrastructure Network Services

1 product

1 product

5 products

Active Iq Unified Manager

E Series Performance Analyzer

Oncommand Insight

Oncommand Workflow Automation

5 products

Jd Edwards Enterpriseone Tools

Peoplesoft Enterprise Peopletools

1 product

Sinec Infrastructure Network Services

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Nodejs Node.js	From 15.0.0 to 15.10.0
Nodejs Node.js	From 10.0.0 to 10.24.0
Nodejs Node.js	From 12.0.0 to 12.21.0
Nodejs Node.js	From 14.0.0 to 14.16.0

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 32
Fedoraproject Fedora	Version 33
Fedoraproject Fedora	Version 34

Configuration C

6 vulnerable

Vulnerable Software	Affected Versions
Netapp Active Iq Unified Manager	All versions
Netapp Active Iq Unified Manager	All versions
Netapp E Series Performance Analyzer	All versions
Netapp Oncommand Insight	All versions
Netapp Oncommand Workflow Automation	All versions
Netapp Snapcenter	All versions

Configuration D

8 vulnerable

Vulnerable Software	Affected Versions
Oracle Graalvm	Version 19.3.5
Oracle Graalvm	Version 20.3.1.2
Oracle Graalvm	Version 21.0.0.2
Oracle Jd Edwards Enterpriseone Tools	Before 9.2.6.0
Oracle Mysql Cluster	Up to 8.0.25
Oracle Nosql Database	Before 20.3
Oracle Peoplesoft Enterprise Peopletools	Version 8.58
Oracle Peoplesoft Enterprise Peopletools	Version 8.59

Configuration E

1 vulnerable

Vulnerable Software	Affected Versions
Siemens Sinec Infrastructure Network Services	Before 1.0.1.1

Related CWEs

Reliance on Reverse DNS Resolution for a Security-Critical Action

The product performs reverse DNS resolution on an IP address to obtain the hostname and make a security decision, but it does not properly ensure that the IP address is truly associated with the hostname.

References (24)

https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

Source: support@hackerone.com

PatchThird Party Advisory

https://hackerone.com/reports/1069487

Source: support@hackerone.com

ExploitIssue TrackingThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E4FRS5ZVK4ZQ7XIJQNGIKUXG2DJFHLO7/

Source: support@hackerone.com

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F45Y7TXSU33MTKB6AGL2Q5V5ZOCNPKOG/

Source: support@hackerone.com

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSYFUGKFUSZ27M5TEZ3FKILWTWFJTFAZ/

Source: support@hackerone.com

https://nodejs.org/en/blog/vulnerability/february-2021-security-releases/

Source: support@hackerone.com

PatchRelease NotesVendor Advisory

https://nodejs.org/en/blog/vulnerability/march-2018-security-releases/#node-js-inspector-dns-rebinding-vulnerability-cve-2018-7160

Source: support@hackerone.com

PatchRelease NotesVendor Advisory

https://security.netapp.com/advisory/ntap-20210416-0001/

Source: support@hackerone.com

Third Party Advisory

https://security.netapp.com/advisory/ntap-20210723-0001/

Source: support@hackerone.com

Third Party Advisory

https://www.oracle.com//security-alerts/cpujul2021.html

Source: support@hackerone.com

PatchThird Party Advisory

https://www.oracle.com/security-alerts/cpuApr2021.html

Source: support@hackerone.com

PatchThird Party Advisory

https://www.oracle.com/security-alerts/cpuoct2021.html

Source: support@hackerone.com

PatchThird Party Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://hackerone.com/reports/1069487

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitIssue TrackingThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E4FRS5ZVK4ZQ7XIJQNGIKUXG2DJFHLO7/

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F45Y7TXSU33MTKB6AGL2Q5V5ZOCNPKOG/

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSYFUGKFUSZ27M5TEZ3FKILWTWFJTFAZ/

Source: af854a3a-2127-422b-91ae-364da2661108

https://nodejs.org/en/blog/vulnerability/february-2021-security-releases/

Source: af854a3a-2127-422b-91ae-364da2661108

PatchRelease NotesVendor Advisory

https://nodejs.org/en/blog/vulnerability/march-2018-security-releases/#node-js-inspector-dns-rebinding-vulnerability-cve-2018-7160

Source: af854a3a-2127-422b-91ae-364da2661108

PatchRelease NotesVendor Advisory

https://security.netapp.com/advisory/ntap-20210416-0001/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://security.netapp.com/advisory/ntap-20210723-0001/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.oracle.com//security-alerts/cpujul2021.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://www.oracle.com/security-alerts/cpuApr2021.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://www.oracle.com/security-alerts/cpuoct2021.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

Timeline

No history available yet.