CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

41 matches found

SUSE CVE-2026-5950

An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during bad-server handling, enabling a remote unauthenticated attacker to cause severe resource exhaustion by sending queries that trigger specific retry conditions. This issue affects BIND 9 versions 9.18.36 throu...

5.3CVSS5.8AI score0.00143EPSS

Exploits0References3

OSV•added 2026/05/20 1:16 p.m.•4 views

ALPINE-CVE-2026-3592

BIND resolvers are vulnerable to an amplified resource consumption/exhaustion attack. If a victim resolver makes a query to a specially crafted zone, the resolver will consume disproportionate resources. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.48, 9.20.0...

5.3CVSS5.8AI score0.00024EPSS

Exploits0References1

CVE•added 2026/05/20 1:10 p.m.•157 views

CVE-2026-5950

The CVE-2026-5950 issue affects BIND 9 resolver logic, with an unbounded resend loop in the bad-server handling path of the state machine. This leads to remote, unauthenticated attackers exhausting resources by issuing queries that trigger specific retry conditions. Affected series include BIND 9...

5.3CVSS5.8AI score0.00143EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2026/05/20 1:9 p.m.•4 views

CVE-2026-3592 Amplification vulnerabilities via self-pointed glue records

5.3CVSS5.8AI score0.00024EPSS

Exploits0References4

RedHat Linux•added 2026/04/28 3:18 p.m.•2 views

bind: BIND: Denial of Service via maliciously crafted DNSSEC-validated zone

A flaw was found in BIND. A remote attacker could exploit this vulnerability by sending a maliciously crafted DNSSEC-validated zone to a BIND resolver. This could cause the resolver to consume excessive CPU resources, leading to a denial of service DoS for legitimate users...

7.5CVSS8.3AI score0.00061EPSS

Exploits0References8

RedHat Linux•added 2026/04/15 11:5 p.m.•4 views

bind: BIND: Denial of Service via maliciously crafted DNSSEC-validated zone

7.5CVSS7.4AI score0.00061EPSS

Exploits0References8

Fedora•added 2026/03/29 12:50 a.m.•2 views

[SECURITY] Fedora 43 Update: bind-9.18.47-1.fc43

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

7.5CVSS7.3AI score0.00061EPSS

Exploits0

SUSE CVE•added 2026/03/26 5:10 p.m.•2 views

SUSE CVE-2026-1519

If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excessive CPU. Authoritative-only servers are generally unaffected, although there are circumstances where authoritative servers may make recursive queries see:...

7.5CVSS5.8AI score0.00061EPSS

Exploits0References16

RedhatCVE•added 2026/03/25 4:46 p.m.•0 views

CVE-2026-3104

A flaw was found in the BIND resolver. A remote attacker can exploit this vulnerability by querying a specially crafted domain, which causes a memory leak. This memory leak can lead to a Denial of Service DoS condition, making the BIND resolver unavailable to legitimate users. Mitigation To...

7.5CVSS5.8AI score0.00052EPSS

Exploits0References6

EUVD•added 2026/03/25 3:31 p.m.•0 views

EUVD-2026-15410

A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domain. This issue affects BIND 9 versions 9.20.0 through 9.20.20, 9.21.0 through 9.21.19, and 9.20.9-S1 through 9.20.20-S1. BIND 9 versions 9.18.0 through 9.18.46 and 9.18.11-S1 through...

7.5CVSS5.8AI score0.00052EPSS

Exploits0References4

OSV•added 2026/03/25 2:16 p.m.•0 views

ALPINE-CVE-2026-3104

7.5CVSS5.8AI score0.00052EPSS

Exploits0References1

NVD•added 2026/03/25 2:16 p.m.•1 views

CVE-2026-3104

7.5CVSS0.00052EPSS

Exploits0References3

NVD•added 2026/03/25 2:16 p.m.•1 views

CVE-2026-1519

7.5CVSS0.00061EPSS

Exploits0References5

Cvelist•added 2026/03/25 1:29 p.m.•20 views

CVE-2026-3104 Memory leak in code preparing DNSSEC proofs of non-existence

7.5CVSS0.00052EPSS

Exploits0References3

CVE•added 2026/03/25 1:25 p.m.•23 views

CVE-2026-1519

Impact: BIND 9 DNSSEC resolvers may consume excessive CPU when validating DNSSEC in a malicious zone. Affected product: BIND 9 series (versions 9.11.0–9.16.50, 9.18.0–9.18.46, 9.20.0–9.20.20, 9.21.0–9.21.19, plus 9.11.3-S1–9.16.50-S1, 9.18.11-S1–9.18.46-S1, and 9.20.9-S1–9.20.20-S1). Root cause: ...

7.5CVSS5.8AI score0.00061EPSS

Exploits0References5Affected Software1

AlpineLinux•added 2026/03/25 1:25 p.m.•0 views

CVE-2026-1519

7.5CVSS5.8AI score0.00061EPSS

Exploits0References5

Cvelist•added 2026/03/25 1:25 p.m.•19 views

CVE-2026-1519 Excessive NSEC3 iterations cause high CPU load during insecure delegation validation

7.5CVSS0.00061EPSS

Exploits0References4

Tenable Nessus•added 2026/03/25 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-3104

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domain. This issue affects BIND 9 versions 9.20.0 throu...

7.5CVSS7.4AI score0.00052EPSS

Exploits0References2

OSV•added 2026/03/25 12:0 a.m.•0 views

UBUNTU-CVE-2026-3104

7.5CVSS7.3AI score0.00052EPSS

Exploits0References4

Positive Technologies•added 2026/01/01 12:0 a.m.•0 views

PT-2026-27770

Name of the Vulnerable Software and Affected Versions BIND versions 9.11.0 through 9.16.50 BIND versions 9.18.0 through 9.18.46 BIND versions 9.20.0 through 9.20.20 BIND versions 9.21.0 through 9.21.19 BIND versions 9.11.3-S1 through 9.16.50-S1 BIND versions 9.18.11-S1 through 9.18.46-S1 BIND...

7.5CVSS5.8AI score0.00061EPSS

Exploits0References94

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by