Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7037 matches found

Vulnrichment
Vulnrichmentadded 2023/10/02 2:5 a.m.15 views

CVE-2023-32820

In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07932637; Issue ID: ALPS07932637...

7AI score0.00407EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/10/02 2:5 a.m.22 views

CVE-2023-32820

In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07932637; Issue ID: ALPS07932637...

7.6AI score0.00407EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/10/02 12:0 a.m.5 views

PT-2023-24051 · Unknown · Wlan Firmware

Name of the Vulnerable Software and Affected Versions: No specific software version is mentioned, so the description is: wlan firmware affected versions not specified Description: The issue is related to improper input handling in wlan firmware, which could lead to a firmware assertion. This migh...

7.5CVSS7AI score0.00407EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2023/09/28 12:0 a.m.50 views

Fedora 38 : bind / bind-dyndb-ldap (2023-a2621f58a9)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-a2621f58a9 advisory. BIND 9.18.19 Security Fixes - Previously, sending a specially crafted message over the control channel could cause the packet- parsing code to run o...

7.5CVSS6.9AI score0.02626EPSS
Exploits0References3
NVD
NVDadded 2023/09/27 6:15 p.m.21 views

CVE-2023-20252

A vulnerability in the Security Assertion Markup Language SAML APIs of Cisco Catalyst SD-WAN Manager Software could allow an unauthenticated, remote attacker to gain unauthorized access to the application as an arbitrary user. This vulnerability is due to improper authentication checks for SAML...

9.8CVSS9.8AI score0.01063EPSS
Exploits0References1
OSV
OSVadded 2023/09/27 4:38 p.m.18 views

SUSE-SU-2023:3821-1 Security update for bind

This update for bind fixes the following issues: Update to release 9.16.44: - CVE-2023-3341: Fixed stack exhaustion flaw in control channel code may cause named to terminate unexpectedly bsc1215472. Update to release 9.16.43 Processing already-queued queries received over TCP could cause an...

7.5CVSS7.5AI score0.02626EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2023/09/27 12:0 a.m.4 views

PT-2023-5510 · Cisco · Cisco Catalyst Sd-Wan Manager

Name of the Vulnerable Software and Affected Versions: Cisco Catalyst SD-WAN Manager Software affected versions not specified Description: A vulnerability in the Security Assertion Markup Language SAML APIs could allow an unauthenticated, remote attacker to gain unauthorized access to the...

10CVSS9.6AI score0.01063EPSS
Exploits0References15
Amazon
Amazonadded 2023/09/25 12:0 a.m.7 views

Medium: mariadb

Issue Overview: MariaDB v10.4 to v10.7 was discovered to contain an use-after-poison in prepareinplaceaddvirtual at /storage/innobase/handler/handler0alter.cc. CVE-2022-32081 MariaDB v10.5 to v10.7 was discovered to contain an assertion failure at table-getrefcount == 0 in dict0dict.cc...

7.5CVSS7.3AI score0.0159EPSS
Exploits3
SUSE CVE
SUSE CVEadded 2023/09/23 2:8 a.m.3 views

SUSE CVE-2023-4236

A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. This issue affects BIND 9 versions 9.18.0 through 9.18.18...

7.5CVSS8.4AI score0.0215EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2023/09/23 12:0 a.m.49 views

Debian DSA-5504-1 : bind9 - security update

The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5504 advisory. Several vulnerabilities were discovered in BIND, a DNS server implementation. CVE-2023-3341 A stack exhaustion flaw was discovered in the control channel cod...

7.5CVSS7AI score0.02626EPSS
Exploits0References9
RedHat Linux
RedHat Linuxadded 2023/09/20 4:46 p.m.3 views

open-vm-tools: SAML token signature bypass

An improper signature verification flaw was found in open-vm-tools that may lead to a bypass of SAML token signature. A malicious actor that has been granted Guest Operation Privileges in a target virtual machine may be able to elevate their privileges if that target virtual machine has been...

7.5CVSS6.9AI score0.01193EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2023/09/20 3:56 p.m.39 views

CVE-2023-4236

A flaw was found in the Bind package. The networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. A named instance vulnerable t...

7.5CVSS6.9AI score0.0215EPSS
Exploits0References3
OSV
OSVadded 2023/09/20 1:15 p.m.2 views

ALPINE-CVE-2023-4236

A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. This issue affects BIND 9 versions 9.18.0 through 9.18.18...

7.5CVSS7AI score0.0215EPSS
Exploits0References1
NVD
NVDadded 2023/09/20 1:15 p.m.28 views

CVE-2023-4236

A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. This issue affects BIND 9 versions 9.18.0 through 9.18.18...

7.5CVSS7.5AI score0.0215EPSS
Exploits0References7
OSV
OSVadded 2023/09/20 1:15 p.m.28 views

CVE-2023-4236

A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. This issue affects BIND 9 versions 9.18.0 through 9.18.18...

7.5CVSS7.1AI score0.0215EPSS
Exploits0References7
Prion
Prionadded 2023/09/20 1:15 p.m.86 views

Design/Logic Flaw

A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. This issue affects BIND 9 versions 9.18.0 through 9.18.18...

5CVSS7.3AI score0.0215EPSS
Exploits0References7Affected Software3
Debian CVE
Debian CVEadded 2023/09/20 12:32 p.m.39 views

CVE-2023-4236

A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. This issue affects BIND 9 versions 9.18.0 through 9.18.18...

7.5CVSS7.6AI score0.0215EPSS
Exploits0
CVE
CVEadded 2023/09/20 12:32 p.m.210 views

CVE-2023-4236

CVE-2023-4236 affects BIND 9 to include versions 9.18.0–9.18.18 and 9.18.11-S1–9.18.18-S1. The issue is a flaw in the DNS-over-TLS networking code that can cause an assertion failure, leading to an unexpected termination of named under heavy DNS-over-TLS query load. The practical consequence is a...

7.5CVSS7.5AI score0.0215EPSS
Exploits0References7Affected Software1
Cvelist
Cvelistadded 2023/09/20 12:32 p.m.25 views

CVE-2023-4236 named may terminate unexpectedly under high DNS-over-TLS query load

A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. This issue affects BIND 9 versions 9.18.0 through 9.18.18...

7.5CVSS7.7AI score0.0215EPSS
Exploits0References7
AlpineLinux
AlpineLinuxadded 2023/09/20 12:32 p.m.45 views

CVE-2023-4236

A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. This issue affects BIND 9 versions 9.18.0 through 9.18.18...

7.5CVSS7.6AI score0.0215EPSS
Exploits0
Rows per page
Query Builder