A vulnerability in the DNSSEC component of the DNS protocol implementation of the DNS server BIND is related to the algorithmic complexity and unrestricted resource allocation in the creation of a DNS zone.
complexity and unrestricted resource allocation when creating a DNS zone. Exploitation of the vulnerability could
Allow an attacker acting remotely to cause a denial of service

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64dnsmasq<= 2.90-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
redos	7.3	x86_64	dnsmasq	<= 2.90-1	UNKNOWN

cbl_mariner 4

f5 1

nessus 68

osv 17

openvas 39

rocky 4

veracode 1

cvelist 1

nvd 1

githubexploit 1

mscve 1

cgr 1

prion 1

cve 1

alpinelinux 1

ubuntucve 1

redhatcve 1

wolfi 1

debiancve 1

freebsd 2

redhat 15

amazon 2

almalinux 6

akamaiblog 1

oraclelinux 4

debian 4

ubuntu 4

redos 1

mageia 2

fedora 6

freebsd_advisory 1

cloudlinux 1

slackware 1

cloudfoundry 1

photon 2

cbl_mariner

CVE-2023-50387 affecting package bind for versions less than 9.16.48-1

2024-03-05 17:52:42

CVE-2023-50387 affecting package unbound for versions less than 1.19.1-1

2024-03-05 17:52:42

CVE-2023-50387 affecting package bind for versions less than 9.19.21-1

2024-03-19 17:21:46

K000139092 : DNS vulnerability CVE-2023-50387

2024-03-29 00:00:00

nessus

EulerOS 2.0 SP9 : bind (EulerOS-SA-2024-1502)

2024-04-08 00:00:00

ISC BIND 9.0.0 < 9.16.48 / 9.9.3-S1 < 9.16.48-S1 / 9.18.0 < 9.18.24 / 9.18.11-S1 < 9.18.24-S1 / 9.19.0 < 9.19.21 Vulnerability (cve-2023-50387)

2024-02-13 00:00:00

EulerOS 2.0 SP11 : dnsmasq (EulerOS-SA-2024-1796)

2024-06-03 00:00:00

osv

CVE-2023-50387

2024-02-14 16:15:45

Important: unbound security update

2024-02-26 00:00:00

Important: dnsmasq security update

2024-03-14 00:00:00

openvas

Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2024-1481)

2024-04-08 00:00:00

Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2024-1784)

2024-06-03 00:00:00

Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2024-1502)

2024-04-08 00:00:00

rocky

DL1 bug fix update

2024-05-06 13:04:21

dnsmasq security update

2024-03-27 04:34:32

bind and dhcp security update

2024-05-06 13:04:07

veracode

Denial Of Service

2024-02-18 06:35:53

cvelist

CVE-2023-50387

2024-02-14 00:00:00

nvd

CVE-2023-50387

2024-02-14 16:15:45

githubexploit

Exploit for Allocation of Resources Without Limits or Throttling in Redhat Enterprise Linux

2024-02-18 21:50:04

mscve

MITRE: CVE-2023-50387 DNSSEC verification complexity can be exploited to exhaust CPU resources and stall DNS resolvers

2024-02-13 08:00:00

cgr

CVE-2023-50387 vulnerabilities

2024-05-19 03:07:16

prion

Design/Logic Flaw

2024-02-14 16:15:00

cve

CVE-2023-50387

2024-02-14 16:15:45

alpinelinux

CVE-2023-50387

2024-02-14 16:15:45

ubuntucve

CVE-2023-50387

2024-02-13 00:00:00

redhatcve

CVE-2023-50387

2024-02-14 20:32:22

wolfi

CVE-2023-50387 vulnerabilities

2024-06-18 09:08:19

debiancve

CVE-2023-50387

2024-02-14 16:15:45

freebsd

powerdns-recursor -- Multiple Vulnerabilities

2024-02-14 00:00:00

DNSSEC validators -- denial-of-service/CPU exhaustion from KeyTrap and NSEC3 vulnerabilities

2024-02-06 00:00:00

redhat

(RHSA-2024:0981) Important: unbound security update

2024-02-26 09:13:42

(RHSA-2024:0982) Important: unbound security update

2024-02-26 09:15:03

(RHSA-2024:0965) Important: unbound security update

2024-02-26 00:56:26

amazon

Important: unbound

2024-02-29 10:03:00

Important: bind

2024-04-24 22:15:00

almalinux

Important: dnsmasq security update

2024-03-14 00:00:00

Important: dnsmasq security update

2024-03-14 00:00:00

Important: unbound security update

2024-02-26 00:00:00

akamaiblog

CVE-2023-50387 and CVE-2023-50868 ? DNS Exploit KeyTrap Posed Major Internet Threat

2024-02-15 07:00:00

oraclelinux

unbound security update

2024-02-28 00:00:00

dnsmasq security update

2024-03-15 00:00:00

unbound security update

2024-02-28 00:00:00

debian

[SECURITY] [DSA 5620-1] unbound security update

2024-02-14 06:49:32

[SECURITY] [DLA 3736-1] unbound security update

2024-02-21 12:20:40

[SECURITY] [DSA 5626-1] pdns-recursor security update

2024-02-18 16:35:24

ubuntu

Bind vulnerabilities

2024-04-09 00:00:00

Unbound vulnerabilities

2024-02-28 00:00:00

Dnsmasq vulnerabilities

2024-02-26 00:00:00

redos

ROS-20240410-09

2024-04-10 00:00:00

mageia

Updated dnsmasq packages fix security vulnerabilities

2024-02-18 04:49:05

Updated unbound packages fix security vulnerabilities

2024-02-17 03:55:07

fedora

[SECURITY] Fedora 39 Update: dnsmasq-2.90-1.fc39

2024-02-19 02:29:29

[SECURITY] Fedora 38 Update: dnsmasq-2.90-1.fc38

2024-02-29 01:59:13

[SECURITY] Fedora 39 Update: unbound-1.19.1-2.fc39

2024-02-18 00:55:50

freebsd_advisory

FreeBSD-SA-24:03.unbound

2024-03-28 00:00:00

cloudlinux

bind: Fix of 2 CVEs

2024-03-14 17:26:05

slackware

[slackware-security] dnsmasq

2024-02-14 04:22:19

cloudfoundry

USN-6665-1: Unbound vulnerabilities | Cloud Foundry

2024-04-04 00:00:00

photon

Important Photon OS Security Update - PHSA-2024-5.0-0205

2024-02-14 00:00:00

Important Photon OS Security Update - PHSA-2024-3.0-0731

2024-02-28 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

High

0.05 Low

EPSS

Percentile

92.9%

JSON

Related for ROS-20240611-07