severity update

patch-1
Dhiyaneshwaran 2024-02-08 11:40:59 +05:30 committed by GitHub
parent 65c5e8a61b
commit d566961a08
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 1 additions and 8 deletions

View File

@ -3,20 +3,13 @@ id: dns-rebinding
info: info:
name: DNS Rebinding Attack name: DNS Rebinding Attack
author: ricardomaia author: ricardomaia
severity: high severity: unknown
description: | description: |
Detects DNS Rebinding attacks by checking if the DNS response contains a private IPv4 or IPv6 address. Detects DNS Rebinding attacks by checking if the DNS response contains a private IPv4 or IPv6 address.
reference: reference:
- https://capec.mitre.org/data/definitions/275.html - https://capec.mitre.org/data/definitions/275.html
- https://payatu.com/blog/dns-rebinding/ - https://payatu.com/blog/dns-rebinding/
- https://heimdalsecurity.com/blog/dns-rebinding/ - https://heimdalsecurity.com/blog/dns-rebinding/
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
cvss-score: 8.6
cwe-id: CWE-350
metadata:
verified: true
max-request: 2
tags: redirect,dns,network tags: redirect,dns,network
dns: dns: