QwikSec

Security Database

CVE

CWE

Training

CVE-2021-3448

Published: Apr 8, 2021

Modified: Dec 3, 2025

PUBLISHED

Description

A flaw was found in dnsmasq in versions before 2.85. When configured to use a specific server for a given network interface, dnsmasq uses a fixed port while forwarding queries. An attacker on the network, able to find the outgoing port used by dnsmasq, only needs to guess the random transmission ID to forge a reply and get it accepted by dnsmasq. This flaw makes a DNS Cache Poisoning attack much easier. The highest threat from this vulnerability is to data integrity.

Vendor	Product	Versions
n/a	dnsmasq	affected `dnsmasq 2.85`

Weaknesses (CWE)

References

https://bugzilla.redhat.com/show_bug.cgi?id=1939368

x_refsource_MISC

FEDORA-2021-62a5062b2d

vendor-advisory

x_refsource_FEDORA

FEDORA-2021-9433bedebd

vendor-advisory

x_refsource_FEDORA

FEDORA-2021-5cd2571751

vendor-advisory

x_refsource_FEDORA

vendor-advisory

x_refsource_GENTOO

https://www.oracle.com/security-alerts/cpujan2022.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.