{"uuid": "553055a7-efd0-4582-8d0a-3503ed613284", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50868", "type": "seen", "source": "https://t.me/arpsyndicate/4656", "content": "#ExploitObserverAlert\n\nCVE-2023-50868\n\nDESCRIPTION: Exploit Observer has 37 entries in 8 file formats related to CVE-2023-50868. The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random subdomain attack, aka the \"NSEC3\" issue. The RFC 5155 specification implies that an algorithm must perform thousands of iterations of a hash function in certain situations.\n\nFIRST-EPSS: 0.000460000\nARPS-EXPLOITABILITY: 0.7531041", "creation_timestamp": "2024-04-13T13:04:10.000000Z"}