CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в connman

ConnMan also known as Connection Manager versions 1.30 to 1.39 have a stack-based buffer overflow issue in the uncompress function of dnsproxy.c, occurring due to the use of NAME, RDATA, or RDLENGTH fields for the A or AAAA records...

9.8CVSS7.6AI score0.00155EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-20507

Malware in sbrugna...

9.8CVSS9.2AI score0.00155EPSS

Exploits1References9

Kitploit•added 2020/02/24 9:0 p.m.•67 views

Dnssearch - A Subdomain Enumeration Tool

This software is a subdomain enumeration tool. Purpose dnssearch takes an input domain -domain parameter and a wordlist -wordlist parameter , it will then perform concurrent DNS requests using the lines of the wordlist as sub domains eventually bruteforcing every sub domain available on the top...

7.3AI score

Exploits0References1

AlpineLinux•added 2019/12/16 12:0 a.m.•44 views

CVE-2019-19331

knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A...

7.5CVSS7.2AI score0.00489EPSS

Exploits1

CVE•added 2019/07/30 10:15 p.m.•288 views

CVE-2019-10162

PowerDNS Authoritative Server vulnerability CVE-2019-10162 affects versions prior to 4.1.10 and 4.0.8. An authorized user can cause the server to terminate by inserting a crafted MASTER zone record, triggered when the server parses NS/A/AAAA data for an outgoing NOTIFY. The issue is tied to how p...

7.5CVSS7.1AI score0.00006EPSS

Exploits0References5Affected Software1

Talos Blog•added 2019/07/09 8:6 a.m.•103 views

Sea Turtle keeps on swimming, finds new victims, DNS hijacking techniques

By Danny Adamitis with contributions from Paul Rascagneres. Executive summary After several months of activity, the actors behind the "Sea Turtle" DNS hijacking campaign are not slowing down. Cisco Talos recently discovered new details that suggest they regrouped after we published our initial...

0.3AI score

Exploits0

UbuntuCve•added 2017/10/19 11:29 p.m.•38 views

CVE-2017-15650

musl libc before 1.1.17 has a buffer overflow via crafted DNS replies because dnsparsecallback in network/lookupname.c does not restrict the number of addresses, and thus an attacker can provide an unexpected number by sending A records in a reply to an AAAA query...

7.5CVSS7.3AI score0.00676EPSS

Exploits0References6

Positive Technologies•added 2017/10/18 12:0 a.m.•4 views

PT-2017-4088 · Musl +2 · Musl Libc +2

Name of the Vulnerable Software and Affected Versions: musl libc versions prior to 1.1.17 Description: The issue is related to a buffer overflow in the dns parse callback function in network/lookup name.c, which does not restrict the number of addresses. This allows an attacker to provide an...

9.8CVSS8.2AI score0.41417EPSS

Exploits10References36