CVE-2026-3094

Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process...

CVE-2026-3094

creationtimestamp| type| source ---|---|--- 2026-03-04 09:18:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg7xbmq7zf2c 2026-03-05 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-064-01 2026-03-06 05:00:00+00:00| seen|...

MiracleLinux 8 : bind9.16-9.16.23-0.14.el8 (AXSA:2023-5856:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5856:01 advisory. bind: processing large delegations may severely degrade resolver performance CVE-2022-2795 bind: flooding with UPDATE requests may lead to DoS...

MiracleLinux 8 : bind-9.11.36-11.el8 (AXSA:2024-7362:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7362:01 advisory. bind: flooding with UPDATE requests may lead to DoS CVE-2022-3094 Tenable has extracted the preceding description block directly from the MiracleLinux securi...

Amazon Linux 2 : glib2, --advisory ALAS2-2025-3094 (ALAS-2025-3094)

The version of glib2 installed on the remote host is prior to 2.56.1-9. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3094 advisory. A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the gescapeuristring...

CLSA-2025-1762957404 dhcp: Fix of CVE-2022-3094

Rebuild with the latest ELS version of bind to address CVE-2022-3094...

CLSA-2025-1762957104 dhcp: Fix of CVE-2022-3094

Rebuild with the latest ELS version of bind to address CVE-2022-3094...

Linux Distros Unpatched Vulnerability : CVE-2016-3094

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PlainSaslServer.java in Apache Qpid Java before 6.0.3, when the broker is configured to allow plaintext passwords, allows remote attackers to cause a denial of...

Alibaba Cloud Linux 3 : 0067: bind (ALINUX3-SA-2024:0067)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0067 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-3094: Sending a flood of dynamic DNS updat...

Advisory ROSA-SA-2025-2834

Software: bind 9.11.36 OS: ROSA Virtualization 2.1 packageevrstring: bind-9.11.36-16.rv3.4 CVE-ID: CVE-2022-3094 BDU-ID: 2023-00580 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the named component of the DNS BIND server is related to the ability to use memory after it has been freed. Exploitation...

Linux Distros Unpatched Vulnerability : CVE-2022-3094

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory...

Security Bulletin: Vulnerabilities in bind and dnsmasq affect IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products

Summary Vulnerabilities in bind and dnsmasq affect IBM Storage Virtualize products and could denial of service. CVE-2022-2795 CVE-2022-3094 CVE-2022-3736 CVE-2022-3924 CVE-2023-4408 CVE-2023-5517 CVE-5679 CVE-2023-6516 CVE-2023-50387 CVE-2023-50868 . Vulnerability Details CVEID:CVE-2022-2795...

Medium: bind

Issue Overview: Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory. We are not aware of any cases where this has been exploited. Memory is allocated prior to the checking of access...

Security Bulletin: Vulnerability in BIND affects IBM Integrated Analytics System [CVE-2022-3094]

Summary Redhat provided BIND is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE CVE-2022-3094 Vulnerability Details CVEID:CVE-2022-3094 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by the allocation of memory prior to...

Adobe Digital Editions < 4.5.5 Multiple Vulnerabilities (APSB17-20) (macOS)

The version of Adobe Digital Editions installed on the remote macOS host is prior to 4.5.5. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB17-20 advisory. - Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The...

Adobe Digital Editions < 4.5.5 Multiple Vulnerabilities (APSB17-20)

The version of Adobe Digital Editions installed on the remote Windows host is prior to 4.5.5. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB17-20 advisory. - Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The...

Security Bulletin: Vulnerability in bind library (CVE-2022-3094) affects Power HMC.

Summary The bind library is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2022-3094 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by the allocation of memory prior to the checking of access permissions ACL...

openSUSE Security Advisory (SUSE-SU-2024:3094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

IT threat evolution Q2 2024

Targeted attacks XZ backdoor: a supply chain attack in the making On March 29, a message on the Openwall oss-security mailing list announced the discovery of a backdoor in XZ, a compression utility included in many popular Linux distributions. The backdoored library is used by the OpenSSH server...

APT trends report Q2 2024

For over six years now, Kasperskys Global Research and Analysis Team GReAT has been sharing quarterly updates on advanced persistent threats APTs. These summaries draw on our threat intelligence research, offering a representative overview of what weve published and discussed in more detail in ou...