Lucene search
K

110 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : nginx:1.16 (AXSA:2021-2307:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2307:01 advisory. nginx: Off-by-one in ngxresolvercopy when labels are followed by a pointer to a root domain name CVE-2021-23017 Tenable has extracted the preceding descripti...

7.7CVSS8.3AI score0.52838EPSS
Exploits10References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 7 : rh-nginx116-nginx-1.16.1-6.0.1.el7.AXS7 (AXSA:2021-1875:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1875:01 advisory. nginx: Off-by-one in ngxresolvercopy when labels are followed by a pointer to a root domain name CVE-2021-23017 Tenable has extracted the preceding descripti...

7.7CVSS8.3AI score0.52838EPSS
Exploits10References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.15 views

Alibaba Cloud Linux 3 : 0016: nginx:1.20 (ALINUX3-SA-2022:0016)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0016 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-9511: Some HTTP/2 implementations...

7.8CVSS7.5AI score0.82017EPSS
Exploits10References5
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.24 views

Alibaba Cloud Linux 3 : 0036: nginx:1.18 (ALINUX3-SA-2021:0036)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2021:0036 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-23017: A security issue in nginx resolver...

7.7CVSS7.8AI score0.52838EPSS
Exploits10References2
Redos
Redos
added 2025/05/13 12:0 a.m.41 views

ROS-2-576

2.576 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote attacke...

7.7CVSS8.5AI score0.52838EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2021-23017

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory...

7.7CVSS7.7AI score0.52838EPSS
Exploits10References2
GithubExploit
GithubExploit
added 2024/12/08 9:47 a.m.1895 views

Exploit for Off-by-one Error in F5 Nginx

CVE-2021-23017-POC A security issue in nginx resolver was iden...

7.7CVSS7.8AI score0.52838EPSS
Exploits10
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/01 4:12 p.m.168 views

Security Bulletin: nginx is vulnerable to CVE-2021-23017 used in IBM Maximo Application Suite - Edge Data Collector Component

Summary IBM Maximo Application Suite - Edge Data Collector Component uses nginx which is vulnerable to CVE-2021-23017. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2021-23017 DESCRIPTION: NGINX could allow a remote attacker to execute...

7.7CVSS7.1AI score0.52838EPSS
Exploits10Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.73 views

Rocky Linux 8 : nginx:1.20 (RLSA-2022:0323)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:0323 advisory. - A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory...

7.7CVSS7.8AI score0.52838EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2023/11/01 12:0 a.m.35 views

Puppet Enterprise < 2019.8.7 / 2021.x < 2021.2 Nginx Vulnerability

or more information about this vulnerability, refer to the security announcements for CVE-2021-23017 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text in this plugi...

7.7CVSS8AI score0.52838EPSS
Exploits10References3
GithubExploit
GithubExploit
added 2023/10/21 4:24 a.m.1191 views

Exploit for Off-by-one Error in F5 Nginx

CVE-2021-23017 CVE-2021-23017-PoC python3 poc.py --ta...

7.7CVSS7AI score0.52838EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.35 views

Amazon Linux 2 : nginx (ALASNGINX1-2023-003)

The version of nginx installed on the remote host is prior to 1.20.0-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2NGINX1-2023-003 advisory. A flaw was found in nginx. An off-by-one error while processing DNS responses allows a network attacker to write a dot characte...

7.7CVSS8.6AI score0.52838EPSS
Exploits10References4
Amazon
Amazon
added 2023/09/25 12:0 a.m.6 views

Important: nginx

Issue Overview: A flaw was found in nginx. An off-by-one error while processing DNS responses allows a network attacker to write a dot character out of bounds in a heap allocated buffer which can allow overwriting the least significant byte of next heap chunk metadata likely leading to a remote...

7.7CVSS8.2AI score0.52838EPSS
Exploits10
GithubExploit
GithubExploit
added 2023/07/20 5:39 a.m.741 views

Exploit for Off-by-one Error in F5 Nginx

CVE-2021-23017...

7.7CVSS7AI score0.52838EPSS
Exploits10
Redos
Redos
added 2023/07/06 12:0 a.m.45 views

ROS-2-566

2.566 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote attacke...

7.7CVSS8.5AI score0.52838EPSS
Exploits10
Redos
Redos
added 2023/07/06 12:0 a.m.35 views

ROS-2-1545

2.1545 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote...

7.7CVSS8.4AI score0.52838EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2022/11/22 12:0 a.m.54 views

Oracle GoldenGate Multiple Vulnerabilities (January 2022 CPU)

The version of Oracle GoldenGate installed on the remote host is affected by the following vulnerabilities as noted in the January 2022 CPU advisory : - Vulnerability in Oracle GoldenGate component: Build Request Apache Xerces-C++. The supported version that is affected is Prior to 21.4.0.0.0...

8.3CVSS7.1AI score0.52838EPSS
Exploits15References4
Broadcom
Broadcom
added 2022/11/08 12:0 a.m.1686 views

CVE-2021-23017: NGINX Resolver Vulnerability

A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. Products Affected. Brocade SANnav - Fixed in Brocade SANnav 2.2.1...

7.7CVSS0.9AI score0.52838EPSS
Exploits10
The Hacker News
The Hacker News
added 2022/07/18 5:2 a.m.154 views

Juniper Releases Patches for Critical Flaws in Junos OS and Contrail Networking

Juniper Networks has pushed security updates to address several vulnerabilities affecting multiple products, some of which could be exploited to seize control of affected systems. The most critical of the flaws affect Junos Space and Contrail Networking, with the tech company urging customers to...

7.7CVSS0.5AI score0.52838EPSS
Exploits10
Exploit DB
Exploit DB
added 2022/07/11 12:0 a.m.1794 views

Nginx 1.20.0 - Denial of Service (DOS)

Exploit Title: Nginx 1.20.0 - Denial of Service DOS Date: 2022-6-29 Exploit Author: Mohammed Alshehri - https://Github.com/M507 Vendor Homepage: https://nginx.org/ Software Link: https://github.com/nginx/nginx/releases/tag/release-1.20.0 Version: 0.6.18 - 1.20.0 Tested on: Ubuntu 18.04.4 LTS bion...

7.7CVSS6.9AI score0.52838EPSS
Exploits10
Rows per page
Query Builder