CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Akamai Blog•added 2020/06/05 3:54 p.m.•38 views

Innovation Driven by Operational Experience and Engineering Insight Deters NXNS Attacks

DNS and security have had a long and tangled relationship. The DNS has always been an attractive target since it's a network leverage point. At DNS OARC 30 in Bangkok in 2019, Akamai's Ralf Weber did a presentation called DNS Security: Past, Present, and Future It's Not Easy covering numerous DNS...

0.3AI score

Fedora•added 2020/06/04 2:50 a.m.•40 views

[SECURITY] Fedora 31 Update: bind-9.11.19-1.fc31

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

8.6CVSS1.4AI score0.93422EPSS

Exploits6

Tenable Nessus•added 2020/06/04 12:0 a.m.•33 views

Fedora 32 : knot-resolver (2020-bf68101ad3)

fixes CVE-2020-12667 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security,...

7.5CVSS7.5AI score0.02619EPSS

Fedora•added 2020/06/01 1:26 a.m.•43 views

[SECURITY] Fedora 32 Update: bind-9.11.19-1.fc32

8.6CVSS1.4AI score0.93422EPSS

Exploits6

OpenVAS•added 2020/05/29 12:0 a.m.•33 views

Fedora: Security Advisory for knot-resolver (FEDORA-2020-bf68101ad3)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.6AI score0.02619EPSS

OpenVAS•added 2020/05/29 12:0 a.m.•38 views

Fedora: Security Advisory for unbound (FEDORA-2020-8e9b62948e)

7.5CVSS7AI score0.03588EPSS

OpenVAS•added 2020/05/29 12:0 a.m.•33 views

Fedora: Security Advisory for unbound (FEDORA-2020-3cfd38fefd)

7.5CVSS7AI score0.03588EPSS

Talos Blog•added 2020/05/28 7:59 a.m.•30 views

Dynamic Data Resolver (DDR) — IDA Plugin 1.0 beta

By Holger Unterbrink Executive summaryStatic reverse-engineering in IDA can often be problematic. Certain values are calculated at run time, which makes it difficult to understand what a certain basic block is doing. If you try to perform dynamic analysis by debugging a piece of malware, the...

2.6AI score

Fedora•added 2020/05/28 4:15 a.m.•37 views

[SECURITY] Fedora 32 Update: knot-resolver-5.1.1-1.fc32

The Knot Resolver is a DNSSEC-enabled caching full resolver implementation written in C and LuaJIT, including both a resolver library and a daemon. Modular architecture of the library keeps the core tiny and efficient, and provides a state-machine like API for extensions. The package is...

7.5CVSS2.6AI score0.02619EPSS

Fedora•added 2020/05/28 2:1 a.m.•50 views

[SECURITY] Fedora 31 Update: unbound-1.10.1-1.fc31

Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...

7.5CVSS3AI score0.03588EPSS

Fedora•added 2020/05/24 3:30 a.m.•41 views

[SECURITY] Fedora 32 Update: unbound-1.10.1-1.fc32

7.5CVSS3AI score0.03588EPSS

CNVD•added 2020/05/20 12:0 a.m.•6 views

Knot Resolver Resource Management Error Vulnerability

Knot Resolver is an open source caching DNS resolver written in C and LuaJIT from the CZ.NIC Association of the Czech Republic. A resource management error vulnerability exists in Knot Resolver versions prior to 5.1.1. An attacker could exploit this vulnerability to cause a denial of service with...

7.5CVSS7.2AI score0.02619EPSS

OpenVAS•added 2020/05/20 12:0 a.m.•119 views

Unbound DNS Resolver < 1.10.1 Multiple Vulnerabilities

Unbound DNS Resolver is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nlnetlabs:unbound"; if...

7.5CVSS7.6AI score0.03588EPSS

OpenVAS•added 2020/05/20 12:0 a.m.•61 views

Knot Resolver < 5.1.1 NXNSAttack Vulnerability

Knot Resolver is prone to a denial of service vulnerability NXNSAttack. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

7.5CVSS7.4AI score0.02619EPSS

CNVD•added 2020/05/20 12:0 a.m.•2 views

Unknown Vulnerability in Unbound

Unbound is a DNS resolver from the NLnet Labs Foundation in the Netherlands that supports verified recursion and caching. An unspecified vulnerability exists in Unbound. An attacker can exploit this vulnerability to cause an infinite loop with a specially crafted DNS response...

7.5CVSS7.4AI score0.03588EPSS

RedhatCVE•added 2020/05/19 5:55 p.m.•35 views

CVE-2020-12662

A network amplification vulnerability was found in Unbound, in the way it processes delegation messages from one authoritative zone to another. This flaw allows an attacker to cause a denial of service or be part of an attack against another DNS server when Unbound is deployed as a recursive...

5CVSS5.9AI score0.03259EPSS

Exploits0References5

OSV•added 2020/05/19 1:15 p.m.•29 views

CVE-2020-12667

Knot Resolver before 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records...

7.5CVSS6.6AI score

Exploits0References6

OSV•added 2020/05/19 1:15 p.m.•1 views

DEBIAN-CVE-2020-12667

7.5CVSS7.5AI score0.02619EPSS