[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-8617":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":19,"aliases":50,"duplicate_of":9,"upstream":51,"downstream":52,"duplicates":107,"related":108,"reserved_at":9,"published_at":121,"modified_at":122,"state":123,"summary":124,"references_raw":132,"kevs":194,"epss":195,"epss_history":198,"metrics":403,"affected":420},"CVE-2020-8617","Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIND servers are vulnerable. In releases of BIND dating from March 2018 and after, an assertion check in tsig.c detects this inconsistent state and deliberately exits. Prior to the introduction of the check the server would continue operating in an inconsistent state, with potentially harmful results.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-617","Reachable Assertion","The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.","weakness","Draft","Base",[],[20,34],{"_key":21,"name":22,"source":23,"url":24,"maturity":25,"reliability_score":26,"verified":27,"type":28,"platforms":29,"requires_auth":9,"exploitdb":31,"metasploit":9},"48521","BIND - 'TSIG' Denial of Service","exploit-database","https://www.exploit-db.com/exploits/48521","poc",0.5,false,"dos",[30],"multiple",{"verified":27,"type":28,"platform":30,"file":32,"codes":33},"exploits/multiple/dos/48521.py",[7],{"_key":35,"name":36,"source":37,"url":38,"maturity":25,"reliability_score":26,"verified":27,"type":39,"platforms":40,"requires_auth":27,"exploitdb":9,"metasploit":41},"MSF_AUXILIARY_DOS_DNS_BIND_TSIG_BADTIME","BIND TSIG Badtime Query Denial of Service","metasploit","https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/dns/bind_tsig_badtime.rb","remote",[],{"fullname":42,"rank":43,"rank_name":44,"post_auth":27,"check":27,"notes":45},"auxiliary/dos/dns/bind_tsig_badtime",300,"normal",{"Stability":46,"SideEffects":48,"Reliability":49},[47],"crash-service-down",[],[],[],[],[53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85,87,89,91,93,95,97,99,101,103,105],{"_key":54},"ALPINE-CVE-2020-8617",{"_key":56},"RHSA-2020:2338",{"_key":58},"RHSA-2020:2344",{"_key":60},"RHSA-2020:2345",{"_key":62},"RHSA-2020:2383",{"_key":64},"RHSA-2020:2404",{"_key":66},"RHSA-2020:2893",{"_key":68},"RHSA-2020:3378",{"_key":70},"RHSA-2020:3379",{"_key":72},"RHSA-2020:3433",{"_key":74},"RHSA-2020:3470",{"_key":76},"RHSA-2020:3471",{"_key":78},"RHSA-2020:3475",{"_key":80},"SUSE-SU-2020:1350-1",{"_key":82},"SUSE-SU-2020:14400-1",{"_key":84},"SUSE-SU-2020:1914-1",{"_key":86},"SUSE-SU-2020:2914-1",{"_key":88},"OPENSUSE-SU-2020:1699-1",{"_key":90},"OPENSUSE-SU-2020:1701-1",{"_key":92},"OPENSUSE-SU-2024:10650-1",{"_key":94},"DLA-2227-1",{"_key":96},"DSA-4689-1",{"_key":98},"MGASA-2020-0259",{"_key":100},"UBUNTU-CVE-2020-8617",{"_key":102},"USN-4365-1",{"_key":104},"USN-4365-2",{"_key":106},"DEBIAN-CVE-2020-8617",[],[109,110,111,112,113,114,115,116,117,119],{"_key":80},{"_key":82},{"_key":84},{"_key":86},{"_key":88},{"_key":90},{"_key":92},{"_key":98},{"_key":118},"CGA-72XR-J786-QXVH",{"_key":120},"CGA-PWXH-P2RJ-9P7F","2020-05-19T14:05:16.241Z","2024-09-16T20:26:32.566Z","Modified",{"cisa_kev":27,"cisa_ransomware":27,"cisa_vendor":9,"epss_severity":125,"epss_score":126,"severity":127,"severity_score":128,"severity_version":129,"severity_source":130,"severity_vector":131,"severity_status":123},"critical",0.92629,"high",7.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[133,141,148,153,157,163,168,172,176,181,185,190],{"url":134,"sources":135,"tags":137},"https://kb.isc.org/docs/cve-2020-8617",[130,136],"nvd",[138,139,140],"X Refsource CONFIRM","Patch","Vendor Advisory",{"url":142,"sources":143,"tags":144},"http://www.openwall.com/lists/oss-security/2020/05/19/4",[130,136],[145,146,139,147],"Mailing List","X Refsource MLIST","Third Party Advisory",{"url":149,"sources":150,"tags":151},"https://www.debian.org/security/2020/dsa-4689",[130,136],[140,152,147],"X Refsource DEBIAN",{"url":154,"sources":155,"tags":156},"https://security.netapp.com/advisory/ntap-20200522-0002/",[130,136],[138,147],{"url":158,"sources":159,"tags":160},"http://packetstormsecurity.com/files/157836/BIND-TSIG-Denial-Of-Service.html",[130,136],[161,147,162],"X Refsource MISC","VDB Entry",{"url":164,"sources":165,"tags":166},"https://usn.ubuntu.com/4365-2/",[130,136],[140,167,147],"X Refsource UBUNTU",{"url":169,"sources":170,"tags":171},"https://usn.ubuntu.com/4365-1/",[130,136],[140,167,147],{"url":173,"sources":174,"tags":175},"https://lists.debian.org/debian-lts-announce/2020/05/msg00031.html",[130,136],[145,146,147],{"url":177,"sources":178,"tags":179},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WOGCJS2XQ3SQNF4W6GLZ73LWZJ6ZZWZI/",[130,136],[140,180],"X Refsource FEDORA",{"url":182,"sources":183,"tags":184},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JKJXVBOKZ36ER3EUCR7VRB7WGHIIMPNJ/",[130,136],[140,180],{"url":186,"sources":187,"tags":188},"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00041.html",[130,136],[140,189,145,147],"X Refsource SUSE",{"url":191,"sources":192,"tags":193},"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00044.html",[130,136],[140,189,145,147],[],{"date":196,"score":126,"percentile":197},"2026-06-04",0.99757,[199,202,204,206,209,211,213,216,218,220,222,224,226,228,231,235,237,239,242,244,246,248,250,252,254,256,258,262,265,268,270,273,276,278,280,283,285,288,290,292,294,296,298,301,304,306,308,310,313,315,317,320,322,324,328,330,332,334,336,339,341,343,345,347,349,351,353,355,357,359,361,363,365,367,369,371,373,375,377,379,381,383,385,387,389,391,393,395,397,400],{"date":200,"score":126,"percentile":201},"2025-11-04",0.99732,{"date":203,"score":126,"percentile":201},"2025-11-05",{"date":205,"score":126,"percentile":201},"2025-11-06",{"date":207,"score":126,"percentile":208},"2025-11-07",0.9973,{"date":210,"score":126,"percentile":208},"2025-11-08",{"date":212,"score":126,"percentile":208},"2025-11-09",{"date":214,"score":126,"percentile":215},"2025-11-10",0.99731,{"date":217,"score":126,"percentile":208},"2025-11-11",{"date":219,"score":126,"percentile":208},"2025-11-12",{"date":221,"score":126,"percentile":215},"2025-11-13",{"date":223,"score":126,"percentile":208},"2025-11-14",{"date":225,"score":126,"percentile":215},"2025-11-15",{"date":227,"score":126,"percentile":215},"2025-11-16",{"date":229,"score":126,"percentile":230},"2025-11-17",0.99733,{"date":232,"score":233,"percentile":234},"2025-11-18",0.89816,0.99658,{"date":236,"score":233,"percentile":234},"2025-11-19",{"date":238,"score":233,"percentile":234},"2025-11-20",{"date":240,"score":126,"percentile":241},"2025-11-21",0.99729,{"date":243,"score":126,"percentile":208},"2025-11-22",{"date":245,"score":126,"percentile":241},"2025-11-23",{"date":247,"score":126,"percentile":208},"2025-11-24",{"date":249,"score":126,"percentile":208},"2025-11-25",{"date":251,"score":126,"percentile":208},"2025-11-26",{"date":253,"score":126,"percentile":208},"2025-11-27",{"date":255,"score":126,"percentile":241},"2025-11-28",{"date":257,"score":126,"percentile":208},"2025-11-29",{"date":259,"score":260,"percentile":261},"2025-11-30",0.89736,0.99532,{"date":263,"score":260,"percentile":264},"2025-12-01",0.99542,{"date":266,"score":260,"percentile":267},"2025-12-02",0.99543,{"date":269,"score":260,"percentile":267},"2025-12-03",{"date":271,"score":260,"percentile":272},"2025-12-04",0.99533,{"date":274,"score":260,"percentile":275},"2025-12-05",0.99534,{"date":277,"score":260,"percentile":275},"2025-12-06",{"date":279,"score":260,"percentile":275},"2025-12-07",{"date":281,"score":260,"percentile":282},"2025-12-08",0.99535,{"date":284,"score":260,"percentile":282},"2025-12-09",{"date":286,"score":260,"percentile":287},"2025-12-10",0.99536,{"date":289,"score":260,"percentile":287},"2025-12-11",{"date":291,"score":260,"percentile":287},"2025-12-12",{"date":293,"score":260,"percentile":287},"2025-12-13",{"date":295,"score":260,"percentile":287},"2025-12-14",{"date":297,"score":260,"percentile":287},"2025-12-15",{"date":299,"score":260,"percentile":300},"2025-12-16",0.99538,{"date":302,"score":260,"percentile":303},"2025-12-17",0.99539,{"date":305,"score":260,"percentile":303},"2025-12-18",{"date":307,"score":260,"percentile":303},"2025-12-19",{"date":309,"score":260,"percentile":303},"2025-12-20",{"date":311,"score":260,"percentile":312},"2025-12-21",0.9954,{"date":314,"score":260,"percentile":312},"2025-12-22",{"date":316,"score":260,"percentile":312},"2025-12-23",{"date":318,"score":260,"percentile":319},"2025-12-24",0.99541,{"date":321,"score":260,"percentile":319},"2025-12-25",{"date":323,"score":260,"percentile":319},"2025-12-26",{"date":325,"score":326,"percentile":327},"2025-12-27",0.88842,0.99495,{"date":329,"score":260,"percentile":312},"2025-12-28",{"date":331,"score":260,"percentile":312},"2025-12-29",{"date":333,"score":260,"percentile":303},"2025-12-30",{"date":335,"score":260,"percentile":312},"2025-12-31",{"date":337,"score":260,"percentile":338},"2026-01-01",0.9955,{"date":340,"score":260,"percentile":338},"2026-01-02",{"date":342,"score":260,"percentile":338},"2026-01-03",{"date":344,"score":260,"percentile":312},"2026-01-04",{"date":346,"score":260,"percentile":312},"2026-01-05",{"date":348,"score":260,"percentile":312},"2026-01-06",{"date":350,"score":260,"percentile":312},"2026-01-07",{"date":352,"score":260,"percentile":312},"2026-01-08",{"date":354,"score":260,"percentile":303},"2026-01-09",{"date":356,"score":126,"percentile":215},"2026-01-10",{"date":358,"score":126,"percentile":208},"2026-01-11",{"date":360,"score":126,"percentile":208},"2026-01-12",{"date":362,"score":126,"percentile":208},"2026-01-13",{"date":364,"score":126,"percentile":215},"2026-01-14",{"date":366,"score":126,"percentile":201},"2026-01-15",{"date":368,"score":126,"percentile":201},"2026-01-16",{"date":370,"score":126,"percentile":201},"2026-01-17",{"date":372,"score":126,"percentile":201},"2026-01-18",{"date":374,"score":126,"percentile":201},"2026-01-19",{"date":376,"score":126,"percentile":215},"2026-01-20",{"date":378,"score":126,"percentile":201},"2026-01-21",{"date":380,"score":126,"percentile":215},"2026-01-22",{"date":382,"score":126,"percentile":201},"2026-01-23",{"date":384,"score":126,"percentile":201},"2026-01-24",{"date":386,"score":126,"percentile":201},"2026-01-25",{"date":388,"score":126,"percentile":201},"2026-01-26",{"date":390,"score":126,"percentile":201},"2026-01-27",{"date":392,"score":126,"percentile":201},"2026-01-28",{"date":394,"score":126,"percentile":230},"2026-01-29",{"date":396,"score":126,"percentile":230},"2026-01-30",{"date":398,"score":126,"percentile":399},"2026-01-31",0.99734,{"date":401,"score":126,"percentile":402},"2026-02-01",0.99743,[404,409],{"source":130,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":405,"cvss_v4_0":9},{"baseScore":128,"baseSeverity":406,"vectorString":131,"impactScore":407,"exploitabilityScore":408},"HIGH",6,10,{"source":136,"cvss_v2_0":410,"cvss_v3_0":9,"cvss_v3_1":415,"cvss_v4_0":9},{"baseScore":411,"baseSeverity":9,"vectorString":412,"impactScore":413,"exploitabilityScore":414},4.3,"AV:N/AC:M/Au:N/C:N/I:N/A:P",2.9,8.6,{"baseScore":416,"baseSeverity":417,"vectorString":418,"impactScore":407,"exploitabilityScore":419},5.9,"MEDIUM","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",5.6,[421,440,451,459,516,522],{"ecosystem":9,"name":422,"vendor":423,"product":424,"cpe_part":425,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":426},"ubuntu linux","canonical","ubuntu_linux","o",[427,430,432,434,436,438],{"version":428,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.04","cpe",{"version":431,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04",{"version":433,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":435,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"version":437,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19.10",{"version":439,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"20.04",{"ecosystem":9,"name":441,"vendor":442,"product":443,"cpe_part":425,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":444},"debian linux","debian","debian_linux",[445,447,449],{"version":446,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":448,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"version":450,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":9,"name":452,"vendor":453,"product":452,"cpe_part":425,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":454},"fedora","fedoraproject",[455,457],{"version":456,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31",{"version":458,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"32",{"ecosystem":9,"name":460,"vendor":461,"product":460,"cpe_part":462,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":463},"bind","isc","a",[464,470,474,478,482,486,490,494,496,498,500,502,504,506,508,510,512,514],{"version":465,"is_range":466,"range_type":429,"version_start":467,"version_start_type":468,"version_end":469,"version_end_type":468,"fixed_in":9},"gte9.0.0_lte9.11.18",true,"9.0.0","including","9.11.18",{"version":471,"is_range":466,"range_type":429,"version_start":472,"version_start_type":468,"version_end":473,"version_end_type":468,"fixed_in":9},"gte9.12.0_lte9.12.4","9.12.0","9.12.4",{"version":475,"is_range":466,"range_type":429,"version_start":476,"version_start_type":468,"version_end":477,"version_end_type":468,"fixed_in":9},"gte9.13.0_lte9.13.7","9.13.0","9.13.7",{"version":479,"is_range":466,"range_type":429,"version_start":480,"version_start_type":468,"version_end":481,"version_end_type":468,"fixed_in":9},"gte9.14.0_lte9.14.11","9.14.0","9.14.11",{"version":483,"is_range":466,"range_type":429,"version_start":484,"version_start_type":468,"version_end":485,"version_end_type":468,"fixed_in":9},"gte9.15.0_lte9.15.6","9.15.0","9.15.6",{"version":487,"is_range":466,"range_type":429,"version_start":488,"version_start_type":468,"version_end":489,"version_end_type":468,"fixed_in":9},"gte9.16.0_lte9.16.2","9.16.0","9.16.2",{"version":491,"is_range":466,"range_type":429,"version_start":492,"version_start_type":468,"version_end":493,"version_end_type":468,"fixed_in":9},"gte9.17.0_lte9.17.1","9.17.0","9.17.1",{"version":495,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.12.4:p1",{"version":497,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.12.4:p2",{"version":499,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.9.3:s1",{"version":501,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.10.5:s1",{"version":503,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.10.7:s1",{"version":505,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.11.3:s1",{"version":507,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.11.5:s3",{"version":509,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.11.5:s5",{"version":511,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.11.6:s1",{"version":513,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.11.7:s1",{"version":515,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.11.8:s1",{"ecosystem":9,"name":517,"vendor":461,"product":518,"cpe_part":462,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":519},"BIND9","bind9",[520],{"version":521,"is_range":27,"range_type":130,"version_start":521,"version_start_type":468,"version_end":521,"version_end_type":468,"fixed_in":9},"9.0.0 -> 9.11.18, 9.12.0 -> 9.12.4-P2, 9.14.0 -> 9.14.11, 9.16.0 -> 9.16.2, and releases 9.17.0 -> 9.17.1 of the 9.17 experimental development branch. All releases in the obsolete 9.13 and 9.15 development branches. All releases of BIND Supported Preview Edition from 9.9.3-S1 -> 9.11.18-S1",{"ecosystem":9,"name":523,"vendor":524,"product":523,"cpe_part":425,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":525},"leap","opensuse",[526,528],{"version":527,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.1",{"version":529,"is_range":27,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.2"]