CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

72 matches found

Code423n4•added 2021/07/21 12:0 a.m.•8 views

Unchecked transfers found in 3 contracts

Handle maplesyrup Vulnerability details Impact This is a high priority vulnerability because it definitely affects the way that funds are transferred and sent between the contracts. You want to make sure that you check the boolean value from these transfer functions in order to make sure that the...

6.9AI score

Exploits0

Tenable Nessus•added 2021/06/10 12:0 a.m.•53 views

SUSE SLES11 Security Update : bind (SUSE-SU-2020:14400-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14400-1 advisory. - To provide fine-grained controls over the ability to use Dynamic DNS DDNS to update records in a zone, BIND 9 provides a feature called...

8.6CVSS6.6AI score0.92629EPSS

Exploits6References13

Tenable Nessus•added 2020/11/06 12:0 a.m.•48 views

EulerOS Virtualization 3.0.6.6 : bind (EulerOS-SA-2020-2444)

According to the versions of the bind packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker...

8.6CVSS6.8AI score0.92629EPSS

Exploits6References3

NVD•added 2020/10/15 10:15 a.m.•14 views

CVE-2020-7326

Improperly implemented security check in McAfee Active Response MAR prior to 2.4.4 may allow local administrators to execute malicious code via stopping a core Windows service leaving McAfee core trust component in an inconsistent state resulting in MAR failing open rather than closed...

6.7CVSS0.00122EPSS

Exploits0References1

Tenable Nessus•added 2020/09/28 12:0 a.m.•43 views

EulerOS 2.0 SP3 : bind (EulerOS-SA-2020-2063)

According to the versions of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In BIND 9.0.0 - 9.11.21, 9.12.0 - 9.16.5, 9.17.0 - 9.17.3, also affects 9.9.3-S1 - 9.11.21-S1 of the BIND 9 Supported Preview Edition, An attacker...

8.6CVSS6.8AI score0.92629EPSS

Exploits6References4

NVD•added 2020/09/16 6:15 p.m.•9 views

CVE-2020-14348

It was found in AMQ Online before 1.5.2 that injecting an invalid field to a user's AddressSpace configuration of the user namespace puts AMQ Online in an inconsistent state, where the AMQ Online components do not operate properly, such as the failure of provisioning and the failure of creating...

4.3CVSS0.00235EPSS

Exploits0References1

Prion•added 2020/09/16 6:15 p.m.•11 views

Design/Logic Flaw

4CVSS4.8AI score0.00235EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2020/07/31 11:14 a.m.•23 views

CVE-2020-14348

A flaw was found in AMQ Online before 1.5.2, where injecting an invalid field to a user's address space configuration of the user namespace puts AMQ Online in an inconsistent state. In this inconsistent state, the AMQ Online components do not operate properly. For example, the failure of...

4CVSS1.4AI score0.00235EPSS

Exploits0References3

Tenable Nessus•added 2020/07/30 12:0 a.m.•38 views

EulerOS 2.0 SP8 : bind (EulerOS-SA-2020-1795)

According to the versions of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A malicious actor who intentionally exploits this lack of effective limitation on the number of fetches performed when processing referrals can,...

8.6CVSS6.7AI score0.92629EPSS

Exploits6References3

Tenable Nessus•added 2020/07/21 12:0 a.m.•39 views

NewStart CGSL MAIN 6.01 : bind Multiple Vulnerabilities (NS-SA-2020-0031)

The remote NewStart CGSL host, running version MAIN 6.01, has bind packages installed that are affected by multiple vulnerabilities: - With pipelining enabled each incoming query on a TCP connection requires a similar resource allocation to a query received via UDP or via TCP without pipelining...

8.6CVSS6.5AI score0.92629EPSS

Exploits6References4

FreeBSD•added 2020/06/17 12:0 a.m.•34 views

BIND -- Remote Denial of Service vulnerability

ISC reports: The asterisk character "" is allowed in DNS zone files, where it is most commonly present as a wildcard at a terminal node of the Domain Name System graph. However, the RFCs do not require and BIND does not enforce that an asterisk character be present only at a terminal node. A...

4.9CVSS0.7AI score0.06931EPSS

Exploits0References1

Tenable Nessus•added 2020/06/17 12:0 a.m.•244 views

EulerOS 2.0 SP2 : bind (EulerOS-SA-2020-1676)

8.6CVSS6.7AI score0.92629EPSS

Exploits6References3

Amazon•added 2020/06/03 12:0 a.m.•68 views

Important: bind

Issue Overview: A malicious actor who intentionally exploits this lack of effective limitation on the number of fetches performed when processing referrals can, through the use of specially crafted referrals, cause a recursing server to issue a very large number of fetches in an attempt to proces...

8.6CVSS6.9AI score0.92629EPSS

Exploits6

OSV•added 2020/05/19 2:15 p.m.•14 views

CVE-2020-8617

Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows or successfully guesses the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration doe...

5.9CVSS8.3AI score0.92629EPSS

Exploits5References12

NVD•added 2020/05/19 2:15 p.m.•18 views

CVE-2020-8617

7.5CVSS7.8AI score0.92629EPSS

Exploits5References12

OSV•added 2020/05/19 2:15 p.m.•2 views

ALPINE-CVE-2020-8617

5.9CVSS6.6AI score0.92629EPSS

Exploits5References1

OSV•added 2020/05/19 2:15 p.m.•2 views

DEBIAN-CVE-2020-8617