CVE-2022-3094

🗓️ 25 Jan 2023 21:34:52Reported by iscType

Sending dynamic DNS updates in large numbers may cause `named` to exhaust memory and exit due to lack of free memory. Vulnerability only impacts trusted clients allowed to make dynamic zone changes

Reporter	Title	Published	Views	Family All 150
IBM Security Bulletins	Security Bulletin: Vulnerabilities in bind and dnsmasq affect IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products	26 Feb 202515:47	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified with the DS8900F and DS8A00 Hardware Management Console (HMC)	27 May 202523:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM i DNS is affected by denial of service attacks due to flaws in ISC BIND (CVE-2022-3094, CVE-2022-3736, CVE-2022-3924).	13 Apr 202317:42	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for March 2024.	15 Apr 202502:17	–	ibm
IBM Security Bulletins	Security Bulletin: AIX is vulnerable to denial of service due to ISC BIND (CVE-2022-3094, CVE-2022-3736, CVE-2022-3924)	18 Jul 202316:40	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in bind library (CVE-2022-3094) affects Power HMC.	10 Sep 202415:19	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities affect IBM Robotic Process Automation for Cloud Pak.	16 Jan 202419:45	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in BIND affects IBM Integrated Analytics System [CVE-2022-3094]	11 Nov 202402:05	–	ibm
Tenable Nessus	Amazon Linux 2023 : bind, bind-chroot, bind-devel (ALAS2023-2023-161)	20 Apr 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : bind (ALAS-2025-2729)	9 Jan 202500:00	–	nessus

NVD

Node

isc bindRange9.16.0–9.16.37-

isc bindRange9.18.0–9.18.11-

isc bindRange9.19.0–9.19.9-

isc bindMatch9.16.8s1supported_preview

isc bindMatch9.16.11s1supported_preview

isc bindMatch9.16.13s1supported_preview

isc bindMatch9.16.14s1supported_preview

isc bindMatch9.16.21s1supported_preview

isc bindMatch9.16.32s1supported_preview

isc bindMatch9.16.36s1supported_preview

[
  {
    "vendor": "ISC",
    "product": "BIND 9",
    "versions": [
      {
        "version": "9.16.0",
        "lessThanOrEqual": "9.16.36",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "9.18.0",
        "lessThanOrEqual": "9.18.10",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "9.19.0",
        "lessThanOrEqual": "9.19.8",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "9.16.8-S1",
        "lessThanOrEqual": "9.16.36-S1",
        "status": "affected",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
kb	www.kb.isc.org/docs/cve-2022-3094

01 Apr 2025 14:15Current

7.2High risk

Vulners AI Score7.2

CVSS 3.17.5

EPSS0.02338

SSVC