Lucene search
K

64 matches found

Amazon
Amazon
added 2025/08/04 12:0 a.m.5 views

Important: unbound

Issue Overview: A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet ECS. Unbound is also vulnerable when compiled with ECS support, i.e., '--enable-subnet', AND configured to send ECS information along wit...

8.7CVSS6.7AI score0.00188EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/07/31 2:23 p.m.5 views

unbound: Unbound Cache poisoning

A cache poisoning flaw was found in Unbound. Resolvers supporting EDNS Client Subnet ECS must segregate outgoing queries to accommodate different outgoing ECS information. This issue reopens resolvers to a birthday paradox attack, known as the Rebirthday Attack, which attempts to match the DNS...

8.7CVSS7.3AI score0.00188EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/29 9:32 a.m.4 views

unbound: Unbound Cache poisoning

A cache poisoning flaw was found in Unbound. Resolvers supporting EDNS Client Subnet ECS must segregate outgoing queries to accommodate different outgoing ECS information. This issue reopens resolvers to a birthday paradox attack, known as the Rebirthday Attack, which attempts to match the DNS...

8.7CVSS7.3AI score0.00188EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/28 10:47 a.m.3 views

unbound: Unbound Cache poisoning

A cache poisoning flaw was found in Unbound. Resolvers supporting EDNS Client Subnet ECS must segregate outgoing queries to accommodate different outgoing ECS information. This issue reopens resolvers to a birthday paradox attack, known as the Rebirthday Attack, which attempts to match the DNS...

8.7CVSS7.3AI score0.00188EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/28 9:2 a.m.3 views

unbound: Unbound Cache poisoning

A cache poisoning flaw was found in Unbound. Resolvers supporting EDNS Client Subnet ECS must segregate outgoing queries to accommodate different outgoing ECS information. This issue reopens resolvers to a birthday paradox attack, known as the Rebirthday Attack, which attempts to match the DNS...

8.7CVSS7.3AI score0.00188EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/07/28 12:0 a.m.5 views

Oracle Linux 8 : unbound (ELSA-2025-11884)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-11884 advisory. - Fix RebirthDay Attack CVE-2025-5994 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus...

8.7CVSS6.6AI score0.00188EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2025/07/28 12:0 a.m.7 views

unbound security update

1.16.2-5.9 - Fix RebirthDay Attack CVE-2025-5994 - Resolves: RHEL-104123...

8.7CVSS6.3AI score0.00188EPSS
Exploits0
Oracle linux
Oracle linux
added 2025/07/28 12:0 a.m.5 views

unbound security update

1.16.2-19.1 - Fix RebirthDay Attack CVE-2025-5994 - Resolves: RHEL-104128...

8.7CVSS6.3AI score0.00188EPSS
Exploits0
OSV
OSV
added 2025/07/22 3:58 p.m.13 views

USN-7666-1 unbound vulnerabilities

Xiang Li discovered that Unbound incorrectly handled EDNS Client Subnet ECS in certain configurations. A remote attacker could possibly use this issue to perform a cache poisoning attack called Rebirthday Attack...

8.7CVSS7.3AI score0.00188EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2025/07/22 3:58 p.m.7 views

USN-7666-1: Unbound vulnerabilities

Xiang Li discovered that Unbound incorrectly handled EDNS Client Subnet ECS in certain configurations. A remote attacker could possibly use this issue to perform a cache poisoning attack called Rebirthday Attack...

8.7CVSS6.8AI score0.00188EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/07/18 12:0 a.m.4 views

FreeBSD : unbound -- Cache poisoning via the ECS-enabled Rebirthday Attack (e27ee4fc-cdc9-45a1-8242-09898cdbdc91)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the e27ee4fc-cdc9-45a1-8242-09898cdbdc91 advisory. [email protected] reports: A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has be...

8.7CVSS6.5AI score0.00188EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/07/18 12:0 a.m.8 views

Unbound DNS Resolver 1.6.2 - 1.23.0 Cache Poisoning Vulnerability (Rebirthday Attack)

Unbound DNS Resolver is prone to a cache poisoning vulnerability Rebirthday Attack. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.6AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/07/16 11:34 p.m.4 views

SUSE CVE-2025-5994

A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet ECS. Unbound is also vulnerable when compiled with ECS support, i.e., '--enable-subnet', AND configured to send ECS information along with queries to...

7.5CVSS6.7AI score0.00188EPSS
Exploits0References5
NVD
NVD
added 2025/07/16 3:15 p.m.6 views

CVE-2025-5994

A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet ECS. Unbound is also vulnerable when compiled with ECS support, i.e., '--enable-subnet', AND configured to send ECS information along with queries to...

8.7CVSS0.00188EPSS
Exploits0References2
OSV
OSV
added 2025/07/16 3:15 p.m.6 views

ALPINE-CVE-2025-5994

A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet ECS. Unbound is also vulnerable when compiled with ECS support, i.e., '--enable-subnet', AND configured to send ECS information along with queries to...

8.7CVSS6.7AI score0.00188EPSS
Exploits0References1
OSV
OSV
added 2025/07/16 3:15 p.m.2 views

DEBIAN-CVE-2025-5994

A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet ECS. Unbound is also vulnerable when compiled with ECS support, i.e., '--enable-subnet', AND configured to send ECS information along with queries to...

8.7CVSS6AI score0.00188EPSS
Exploits0References1
OSV
OSV
added 2025/07/16 3:15 p.m.5 views

CVE-2025-5994

A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet ECS. Unbound is also vulnerable when compiled with ECS support, i.e., '--enable-subnet', AND configured to send ECS information along with queries to...

8.7CVSS6.8AI score0.00188EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/16 2:38 p.m.12 views

CVE-2025-5994 Cache poisoning via the ECS-enabled Rebirthday Attack

A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet ECS. Unbound is also vulnerable when compiled with ECS support, i.e., '--enable-subnet', AND configured to send ECS information along with queries to...

8.7CVSS0.00188EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/07/16 2:38 p.m.5 views

CVE-2025-5994

A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet ECS. Unbound is also vulnerable when compiled with ECS support, i.e., '--enable-subnet', AND configured to send ECS information along with queries to...

8.7CVSS7.6AI score0.00188EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2025/07/16 2:38 p.m.4 views

CVE-2025-5994

A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet ECS. Unbound is also vulnerable when compiled with ECS support, i.e., '--enable-subnet', AND configured to send ECS information along with queries to...

8.7CVSS7AI score0.00188EPSS
Exploits0
Rows per page
Query Builder