Bsides Sg 2022 Internal Domain Names

Source repositories

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2024-57174	Geo Chen Bsides Sg 2022 Internal Domain Names	Hig	0.53	8.1	0.00		Mar 5, 2025	A misconfiguration in Alphion ASEE-1443 Firmware v0.4.H.00.02.15 defines a previously unregistered domain name as the default DNS suffix. This allows attackers to register the unclaimed domain and point its wildcard DNS entry to an attacker-controlled IP address, making it possible to access sensitive information.

CVE-2024-57174HigMar 5, 2025
Geo Chen
Bsides Sg 2022 Internal Domain Names
risk 0.53cvss 8.1epss 0.00
A misconfiguration in Alphion ASEE-1443 Firmware v0.4.H.00.02.15 defines a previously unregistered domain name as the default DNS suffix. This allows attackers to register the unclaimed domain and point its wildcard DNS entry to an attacker-controlled IP address, making it possible to access sensitive information.