CVE-2025-40780

EUVD-2025-35609
In specific circumstances, due to a weakness in the Pseudo Random Number Generator (PRNG) that is used, it is possible for an attacker to predict the source port and query ID that BIND will use.
This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.16.8-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.6 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
iscCNA
8.6 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
Debian logo
Debian Releases
Debian Product
Codename
bind9
bookworm
1:9.18.41-1~deb12u1
fixed
bookworm (security)
1:9.18.44-1~deb12u1
fixed
bullseye
vulnerable
bullseye (security)
1:9.16.50-1~deb11u4
fixed
forky
1:9.20.18-1
fixed
sid
1:9.20.19-1
fixed
trixie
1:9.20.15-1~deb13u1
fixed
trixie (security)
1:9.20.18-1~deb13u1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
bind9
bionic
needed
focal
Fixed 1:9.18.30-0ubuntu0.20.04.2+esm1
released
jammy
Fixed 1:9.18.39-0ubuntu0.22.04.2
released
noble
Fixed 1:9.18.39-0ubuntu0.24.04.2
released
plucky
Fixed 1:9.20.11-0ubuntu0.2
released
questing
Fixed 1:9.20.11-1ubuntu2.1
released
trusty
needs-triage
xenial
needs-triage
isc-dhcp
bionic
needs-triage
focal
not-affected
jammy
not-affected
noble
needs-triage
plucky
ignored
questing
needs-triage
trusty
not-affected
xenial
not-affected
bind9-libs
focal
needs-triage
jammy
needs-triage
noble
dne
plucky
dne
questing
dne
Common Weakness Enumeration
References
https://kb.isc.org/docs/cve-2025-40780
http://www.openwall.com/lists/oss-security/2025/10/22/1