CVE-2024-1488 - Vulnerability Details

- Unbound: unrestricted reconfiguration enabled to anyone that may lead to local privilege escalation

Description

A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. If a process can connect over localhost to port 8953, it can alter the configuration of unbound.service. This flaw allows an unprivileged attacker to manipulate a running instance, potentially altering forwarders, allowing them to track all queries forwarded by the local resolver, and, in some cases, disrupting resolving altogether.

Published: 2024-02-15

Score: 8 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

unaffected

Version	Status	Constraints
`1.16.2`	affected	—

Red Hat

Red Hat Enterprise Linux 8

affected

Version	Status	Constraints
`0:1.16.2-5.el8_9.6`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 8

affected

Version	Status	Constraints
`0:1.16.2-5.8.el8_10`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 8.2 Advanced Update Support

affected

Version	Status	Constraints
`0:1.7.3-12.el8_2.1`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 8.2 Telecommunications Update Service

affected

Version	Status	Constraints
`0:1.7.3-12.el8_2.1`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions

affected

Version	Status	Constraints
`0:1.7.3-12.el8_2.1`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support

affected

Version	Status	Constraints
`0:1.7.3-15.el8_4.1`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 8.4 Telecommunications Update Service

affected

Version	Status	Constraints
`0:1.7.3-15.el8_4.1`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions

affected

Version	Status	Constraints
`0:1.7.3-15.el8_4.1`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 8.6 Extended Update Support

affected

Version	Status	Constraints
`0:1.7.3-17.el8_6.4`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 8.8 Extended Update Support

affected

Version	Status	Constraints
`0:1.16.2-5.el8_8.4`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 9

affected

Version	Status	Constraints
`0:1.16.2-3.el9_3.5`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 9.0 Extended Update Support

affected

Version	Status	Constraints
`0:1.13.1-13.el9_0.4`	unaffected	< *

Red Hat

Red Hat Enterprise Linux 9.2 Extended Update Support

affected

Version	Status	Constraints
`0:1.16.2-3.el9_2.4`	unaffected	< *

Red Hat Red Hat Enterprise Linux 10 affected —

Red Hat Red Hat Enterprise Linux 6 unaffected —

Red Hat Red Hat Enterprise Linux 7 unaffected —

Configuration 1 [-]

cpe:2.3:a:fedoraproject:unbound:*:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:a:redhat:codeready_linux_builder:9.0:::::::*
	cpe:2.3:a:redhat:codeready_linux_builder_eus:9.2:::::::*
	cpe:2.3:a:redhat:codeready_linux_builder_eus:9.4:::::::*
	cpe:2.3:a:redhat:codeready_linux_builder_eus_for_power_little_endian:9.0_ppc64le:::::::*
	cpe:2.3:a:redhat:codeready_linux_builder_eus_for_power_little_endian:9.2_ppc64le:::::::*
	cpe:2.3:a:redhat:codeready_linux_builder_for_arm64:9.0_aarch64:::::::*
	cpe:2.3:a:redhat:codeready_linux_builder_for_arm64:9.2_aarch64:::::::*
	cpe:2.3:a:redhat:codeready_linux_builder_for_arm64_eus:9.4_aarch64:::::::*
	cpe:2.3:a:redhat:codeready_linux_builder_for_ibm_z_systems:9.0_s390x:::::::*
	cpe:2.3:a:redhat:codeready_linux_builder_for_ibm_z_systems:9.2_s390x:::::::*
	cpe:2.3:a:redhat:codeready_linux_builder_for_ibm_z_systems_eus:9.4_s390x:::::::*
	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:9.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.8:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:9.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:9.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.0_aarch64:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.2_aarch64:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:8.6_aarch64:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:8.8_aarch64:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.4_aarch64:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.0_s390x:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.2_s390x:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.6_s390x:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.8_s390x:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.4_s390x:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.0_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.2_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.6_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.8_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.4_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:9.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:9.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.2_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.4_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.6_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.8_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.2_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.4_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.8:::::::*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 8
unbound-0:1.16.2-5.el8_9.6	cpe:/a:redhat:enterprise_linux:8	RHSA-2024:1751	2024-04-11T00:00:00Z
unbound-0:1.16.2-5.8.el8_10	cpe:/a:redhat:enterprise_linux:8	RHSA-2025:0837	2025-01-30T00:00:00Z
Red Hat Enterprise Linux 8.2 Advanced Update Support
unbound-0:1.7.3-12.el8_2.1	cpe:/a:redhat:rhel_aus:8.2	RHSA-2024:2696	2024-05-06T00:00:00Z
Red Hat Enterprise Linux 8.2 Telecommunications Update Service
unbound-0:1.7.3-12.el8_2.1	cpe:/a:redhat:rhel_tus:8.2	RHSA-2024:2696	2024-05-06T00:00:00Z
Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions
unbound-0:1.7.3-12.el8_2.1	cpe:/a:redhat:rhel_e4s:8.2	RHSA-2024:2696	2024-05-06T00:00:00Z
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
unbound-0:1.7.3-15.el8_4.1	cpe:/a:redhat:rhel_aus:8.4	RHSA-2024:2587	2024-04-30T00:00:00Z
Red Hat Enterprise Linux 8.4 Telecommunications Update Service
unbound-0:1.7.3-15.el8_4.1	cpe:/a:redhat:rhel_tus:8.4	RHSA-2024:2587	2024-04-30T00:00:00Z
Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
unbound-0:1.7.3-15.el8_4.1	cpe:/a:redhat:rhel_e4s:8.4	RHSA-2024:2587	2024-04-30T00:00:00Z
Red Hat Enterprise Linux 8.6 Extended Update Support
unbound-0:1.7.3-17.el8_6.4	cpe:/a:redhat:rhel_eus:8.6	RHSA-2024:1804	2024-04-15T00:00:00Z
Red Hat Enterprise Linux 8.8 Extended Update Support
unbound-0:1.16.2-5.el8_8.4	cpe:/a:redhat:rhel_eus:8.8	RHSA-2024:1802	2024-04-15T00:00:00Z
Red Hat Enterprise Linux 9
unbound-0:1.16.2-3.el9_3.5	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:1750	2024-04-10T00:00:00Z
Red Hat Enterprise Linux 9.0 Extended Update Support
unbound-0:1.13.1-13.el9_0.4	cpe:/a:redhat:rhel_eus:9.0	RHSA-2024:1801	2024-04-15T00:00:00Z
Red Hat Enterprise Linux 9.2 Extended Update Support
unbound-0:1.16.2-3.el9_2.4	cpe:/a:redhat:rhel_eus:9.2	RHSA-2024:1780	2024-04-11T00:00:00Z

No data available yet.

Remediation

Vendor Workaround

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2024-17236	A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. If a process can connect over localhost to port 8953, it can alter the configuration of unbound.service. This flaw allows an unprivileged attacker to manipulate a running instance, potentially altering forwarders, allowing them to track all queries forwarded by the local resolver, and, in some cases, disrupting resolving altogether.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00111.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://access.redhat.com/errata/RHSA-2024:1750
https://access.redhat.com/errata/RHSA-2024:1751
https://access.redhat.com/errata/RHSA-2024:1780
https://access.redhat.com/errata/RHSA-2024:1801
https://access.redhat.com/errata/RHSA-2024:1802
https://access.redhat.com/errata/RHSA-2024:1804
https://access.redhat.com/errata/RHSA-2024:2587
https://access.redhat.com/errata/RHSA-2024:2696
https://access.redhat.com/errata/RHSA-2025:0837
https://access.redhat.com/security/cve/CVE-2024-1488
https://bugzilla.redhat.com/show_bug.cgi?id=2264183
https://nvd.nist.gov/vuln/detail/CVE-2024-1488
https://www.cve.org/CVERecord?id=CVE-2024-1488

History

Sat, 05 Jul 2025 03:00:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/o:redhat:enterprise_linux:10

Thu, 13 Feb 2025 01:00:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-15

Thu, 30 Jan 2025 21:30:00 +0000

Type	Values Removed	Values Added
References		https://access.redhat.com/errata/RHSA-2025:0837

Thu, 23 Jan 2025 18:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Fedoraproject Fedoraproject unbound Redhat codeready Linux Builder Redhat codeready Linux Builder Eus Redhat codeready Linux Builder Eus For Power Little Endian Redhat codeready Linux Builder For Arm64 Redhat codeready Linux Builder For Arm64 Eus Redhat codeready Linux Builder For Ibm Z Systems Redhat codeready Linux Builder For Ibm Z Systems Eus Redhat enterprise Linux Eus Redhat enterprise Linux For Arm 64 Redhat enterprise Linux For Arm 64 Eus Redhat enterprise Linux For Ibm Z Systems Redhat enterprise Linux For Ibm Z Systems Eus Redhat enterprise Linux For Power Little Endian Redhat enterprise Linux For Power Little Endian Eus Redhat enterprise Linux Server Aus Redhat enterprise Linux Server For Power Little Endian Update Services For Sap Solutions Redhat enterprise Linux Server Tus
CPEs		cpe:2.3:a:fedoraproject:unbound:::::::: cpe:2.3:a:redhat:codeready_linux_builder:9.0:::::::* cpe:2.3:a:redhat:codeready_linux_builder_eus:9.2:::::::* cpe:2.3:a:redhat:codeready_linux_builder_eus:9.4:::::::* cpe:2.3:a:redhat:codeready_linux_builder_eus_for_power_little_endian:9.0_ppc64le:::::::* cpe:2.3:a:redhat:codeready_linux_builder_eus_for_power_little_endian:9.2_ppc64le:::::::* cpe:2.3:a:redhat:codeready_linux_builder_for_arm64:9.0_aarch64:::::::* cpe:2.3:a:redhat:codeready_linux_builder_for_arm64:9.2_aarch64:::::::* cpe:2.3:a:redhat:codeready_linux_builder_for_arm64_eus:9.4_aarch64:::::::* cpe:2.3:a:redhat:codeready_linux_builder_for_ibm_z_systems:9.0_s390x:::::::* cpe:2.3:a:redhat:codeready_linux_builder_for_ibm_z_systems:9.2_s390x:::::::* cpe:2.3:a:redhat:codeready_linux_builder_for_ibm_z_systems_eus:9.4_s390x:::::::* cpe:2.3:o:redhat:enterprise_linux:8.0:::::::* cpe:2.3:o:redhat:enterprise_linux:9.0:::::::* cpe:2.3:o:redhat:enterprise_linux_eus:8.6:::::::* cpe:2.3:o:redhat:enterprise_linux_eus:8.8:::::::* cpe:2.3:o:redhat:enterprise_linux_eus:9.2:::::::* cpe:2.3:o:redhat:enterprise_linux_eus:9.4:::::::* cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64:::::::* cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.0_aarch64:::::::* cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.2_aarch64:::::::* cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:8.6_aarch64:::::::* cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:8.8_aarch64:::::::* cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.4_aarch64:::::::* cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x:::::::* cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.0_s390x:::::::* cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.2_s390x:::::::* cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.6_s390x:::::::* cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.8_s390x:::::::* cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.4_s390x:::::::* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.0_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.2_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.6_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.8_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.4_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:::::::* cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:::::::* cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:::::::* cpe:2.3:o:redhat:enterprise_linux_server_aus:9.2:::::::* cpe:2.3:o:redhat:enterprise_linux_server_aus:9.4:::::::* cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.2_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.4_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.6_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.8_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.2_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.4_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:::::::* cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:::::::* cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:::::::* cpe:2.3:o:redhat:enterprise_linux_server_tus:8.8:::::::*
Vendors & Products		Fedoraproject Fedoraproject unbound Redhat codeready Linux Builder Redhat codeready Linux Builder Eus Redhat codeready Linux Builder Eus For Power Little Endian Redhat codeready Linux Builder For Arm64 Redhat codeready Linux Builder For Arm64 Eus Redhat codeready Linux Builder For Ibm Z Systems Redhat codeready Linux Builder For Ibm Z Systems Eus Redhat enterprise Linux Eus Redhat enterprise Linux For Arm 64 Redhat enterprise Linux For Arm 64 Eus Redhat enterprise Linux For Ibm Z Systems Redhat enterprise Linux For Ibm Z Systems Eus Redhat enterprise Linux For Power Little Endian Redhat enterprise Linux For Power Little Endian Eus Redhat enterprise Linux Server Aus Redhat enterprise Linux Server For Power Little Endian Update Services For Sap Solutions Redhat enterprise Linux Server Tus

Wed, 06 Nov 2024 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Subscriptions

Fedoraproject Unbound

Redhat Codeready Linux Builder Codeready Linux Builder Eus Codeready Linux Builder Eus For Power Little Endian Codeready Linux Builder For Arm64 Codeready Linux Builder For Arm64 Eus Codeready Linux Builder For Ibm Z Systems Codeready Linux Builder For Ibm Z Systems Eus Enterprise Linux Enterprise Linux Eus Enterprise Linux For Arm 64 Enterprise Linux For Arm 64 Eus Enterprise Linux For Ibm Z Systems Enterprise Linux For Ibm Z Systems Eus Enterprise Linux For Power Little Endian Enterprise Linux For Power Little Endian Eus Enterprise Linux Server Aus Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions Enterprise Linux Server Tus Rhel Aus Rhel E4s Rhel Eus Rhel Tus

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2024-02-15T05:04:13.994Z

Updated: 2025-11-11T15:29:53.824Z

Reserved: 2024-02-14T12:47:25.283Z

Link: CVE-2024-1488

Vulnrichment

Updated: 2024-08-01T18:40:21.182Z

NVD

Status : Modified

Published: 2024-02-15T05:15:10.257

Modified: 2025-01-30T22:15:09.037

Link: CVE-2024-1488

Redhat

Severity : Important

Publid Date: 2024-02-13T00:00:00Z

Links: CVE-2024-1488 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

CWE-276

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object