Lucene search
K

44 matches found

RedHat Linux
RedHat Linux
added 2025/08/11 7:48 a.m.9 views

unbound: Unbound Cache poisoning

A cache poisoning flaw was found in Unbound. Resolvers supporting EDNS Client Subnet ECS must segregate outgoing queries to accommodate different outgoing ECS information. This issue reopens resolvers to a birthday paradox attack, known as the Rebirthday Attack, which attempts to match the DNS...

8.7CVSS7.3AI score0.00188EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/07/10 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from f2fs not performing integrity checks on ino and xnid...

5.5CVSS8AI score0.00159EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/13 2:13 p.m.36 views

avahi: Avahi Wide-Area DNS Predictable Transaction IDs

A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them sequentially after that. This predictable behavior facilitates DNS spoofing attacks, allowing attackers to guess transaction IDs...

5.3CVSS5.7AI score0.00681EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2025/02/16 8:0 a.m.3 views

Avahi: avahi wide-area dns predictable transaction ids

...

5.3CVSS6.6AI score0.00681EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2024/12/10 6:3 p.m.1 views

Security update for avahi

This update for avahi fixes the following issues: CVE-2024-52616: sequential increment of DNS transaction IDs allows DNS spoofing. bsc1233420 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you c...

6.3CVSS7.3AI score0.00681EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/12/05 12:56 p.m.1 views

Security update for avahi

This update for avahi fixes the following issues: CVE-2024-52616: Fixed Avahi Wide-Area DNS Predictable Transaction IDs bsc1233420 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

6.3CVSS6.5AI score0.00681EPSS
Exploits0References4
OSV
OSV
added 2024/11/21 9:15 p.m.8 views

AZL-53579 CVE-2024-52616 affecting package avahi for versions less than 0.8-5

A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them sequentially after that. This predictable behavior facilitates DNS spoofing attacks, allowing attackers to guess transaction IDs...

5.3CVSS6.7AI score0.00681EPSS
Exploits0References1
OSV
OSV
added 2024/11/21 9:15 p.m.7 views

AZL-53756 CVE-2024-52616 affecting package avahi for versions less than 0.8-4

A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them sequentially after that. This predictable behavior facilitates DNS spoofing attacks, allowing attackers to guess transaction IDs...

5.3CVSS6.7AI score0.00681EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/11/19 3:48 a.m.1 views

SUSE CVE-2024-52616

A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them sequentially after that. This predictable behavior facilitates DNS spoofing attacks, allowing attackers to guess transaction IDs...

5.3CVSS7.3AI score0.00681EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2023/06/09 6:15 a.m.3 views

CVE-2023-0693

The Metform Elementor Contact Form Builder for WordPress is vulnerable to Information Disclosure via the 'mftransactionid' shortcode in versions up to, and including, 3.3.1. This allows authenticated attackers, with subscriber-level capabilities or above to obtain sensitive information about the...

6.5CVSS6AI score0.00659EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:8 a.m.4 views

SUSE CVE-2008-1447

The DNS protocol, as implemented in 1 BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; 2 Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referral...

6.8CVSS7.4AI score0.95182EPSS
Exploits20References12
SUSE CVE
SUSE CVE
added 2023/02/15 6:8 a.m.5 views

SUSE CVE-2008-1637

PowerDNS Recursor before 3.1.5 uses insufficient randomness to calculate 1 TRXID values and 2 UDP source port numbers, which makes it easier for remote attackers to poison a DNS cache, related to a algorithmic deficiencies in rand and random functions in external libraries, b use of a 32-bit seed...

6.8CVSS6.8AI score0.03964EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:7 a.m.4 views

SUSE CVE-2008-3905

resolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423 and earlier uses sequential transaction IDs and constant source ports for DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than...

5.8CVSS6.6AI score0.02415EPSS
Exploits2References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:57 a.m.4 views

SUSE CVE-2010-2952

Apache Traffic Server before 2.0.1, and 2.1.x before 2.1.2-unstable, does not properly choose DNS source ports and transaction IDs, and does not properly use DNS query fields to validate responses, which makes it easier for man-in-the-middle attackers to poison the internal DNS cache via a crafte...

4.3CVSS6.6AI score0.02612EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2022/05/17 7:0 a.m.3 views

uClibc-ng through 1.0.40 and uClibc through 0.9.33.2 use predictable DNS transaction IDs that may lead to DNS cache poisoning. This is related to a reset of a value to 0x2.

...

6.5CVSS6.4AI score0.11264EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/05/12 12:0 a.m.6 views

The vulnerability of the C language programming library uClibc and uClibc-ng lies in the possibility of using predictable transaction identifiers during DNS requests, allowing a hacker to redirect users to arbitrary websites.

The vulnerability of the C language programming library uClibc and uClibc-ng lies in the ability to use predictable transaction identifiers during DNS requests. Exploiting this vulnerability allows a malicious actor to send specially crafted DNS packets, thereby causing the DNS cache to store...

7.5CVSS6.7AI score0.11264EPSS
Exploits0References5Affected Software3
OSV
OSV
added 2022/05/06 5:15 a.m.1 views

DEBIAN-CVE-2022-30295

uClibc-ng through 1.0.40 and uClibc through 0.9.33.2 use predictable DNS transaction IDs that may lead to DNS cache poisoning. This is related to a reset of a value to 0x2...

6.5CVSS6.4AI score0.11264EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2021/11/09 5:32 p.m.6 views

dnsmasq: fixed outgoing port used when --server is used with an interface name

A flaw was found in dnsmasq. When configured to use a specific server for a given network interface, dnsmasq uses a fixed port while forwarding queries. An attacker on the network, able to find the outgoing port used by dnsmasq, only needs to guess the random transmission ID to forge a reply and...

4.3CVSS7.3AI score0.01988EPSS
Exploits1References4
CNNVD
CNNVD
added 2021/04/26 12:0 a.m.2 views

systemd 安全漏洞

systemd is a Linux-based system and service manager from the individual developer Lennart Poettering in Germany. The product is compatible with SysV and LSB startup scripts and provides a framework for representing dependencies between system services. A security vulnerability exists in systemd d...

6.1CVSS6.8AI score0.01399EPSS
Exploits1References18
Positive Technologies
Positive Technologies
added 2021/04/14 12:0 a.m.12 views

PT-2021-2649 · Siemens +1 · Simotics Connect 400 +7

Name of the Vulnerable Software and Affected Versions: APOGEE PXC Compact BACnet versions prior to V3.5.5 APOGEE PXC Compact P2 Ethernet versions prior to V2.8.20 APOGEE PXC Modular BACnet versions prior to V3.5.5 APOGEE PXC Modular P2 Ethernet versions prior to V2.8.20 Nucleus NET affected...

5.3CVSS5.2AI score0.01061EPSS
Exploits0References8
Rows per page
Query Builder