Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11964 matches found

OpenVAS
OpenVASadded 2023/06/25 12:0 a.m.31 views

Fedora: Security Advisory for bind (FEDORA-2023-8e1ddb1fa2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.03776EPSS
Exploits0References2
OpenVAS
OpenVASadded 2023/06/25 12:0 a.m.32 views

Fedora: Security Advisory for bind-dyndb-ldap (FEDORA-2023-8e1ddb1fa2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.03776EPSS
Exploits0References2
The Hacker News
The Hacker Newsadded 2023/06/24 3:30 p.m.95 views

U.S. Cybersecurity Agency Adds 6 Flaws to Known Exploited Vulnerabilities Catalog

The U.S. Cybersecurity and Infrastructure Security Agency has added a batch of six flaws to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. This comprises three vulnerabilities that Apple patched this week CVE-2023-32434, CVE-2023-32435, and CVE-2023-32439...

9.8CVSS7.8AI score0.98125EPSS
Exploits10
SUSE CVE
SUSE CVEadded 2023/06/24 1:47 a.m.2 views

SUSE CVE-2023-2911

If the recursive-clients quota is reached on a BIND 9 resolver configured with both stale-answer-enable yes; and stale-answer-client-timeout 0;, a sequence of serve-stale-related lookups could cause named to loop and terminate unexpectedly due to a stack overflow. This issue affects BIND 9 versio...

7.5CVSS7.5AI score0.02575EPSS
Exploits0References14
SUSE CVE
SUSE CVEadded 2023/06/23 1:45 a.m.4 views

SUSE CVE-2023-2829

A named instance configured to run as a DNSSEC-validating recursive resolver with the Aggressive Use of DNSSEC-Validated Cache RFC 8198 option synth-from-dnssec enabled can be remotely terminated using a zone with a malformed NSEC record. This issue affects BIND 9 versions 9.16.8-S1 through...

7.5CVSS6.9AI score0.00919EPSS
Exploits0References3
CISA
CISAadded 2023/06/22 12:0 p.m.4 views

ISC Releases Security Advisories for Multiple Versions of BIND 9

The Internet Systems Consortium ISC has released security advisories that address vulnerabilities affecting multiple versions of the ISC’s Berkeley Internet Name Domain BIND 9. A remote attacker could exploit these vulnerabilities to potentially cause denial-of-service conditions. CISA encourages...

7.5CVSS7.6AI score0.03776EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2023/06/22 6:17 a.m.54 views

CVE-2023-2829

A vulnerability was found in BIND. This security flaw occurs when a named instance is configured to run as a DNSSEC-validating recursive resolver with the Aggressive Use of DNSSEC-Validated Cache RFC 8198 option synth-from-dnssec enabled; remote termination can occur using a zone with a malformed...

7.5CVSS7.3AI score0.00919EPSS
Exploits0References4
Slackware Linux
Slackware Linuxadded 2023/06/22 1:55 a.m.38 views

[slackware-security] bind

New bind packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/bind-9.16.42-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: Exceeding the recursive-clients quota may cause named t...

7.5CVSS7.5AI score0.02575EPSS
Exploits0
OpenVAS
OpenVASadded 2023/06/22 12:0 a.m.32 views

ISC BIND DoS Vulnerability (CVE-2023-2828) - Windows

ISC BIND is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; if...

7.5CVSS7.8AI score0.03776EPSS
Exploits0References1
OpenVAS
OpenVASadded 2023/06/22 12:0 a.m.21 views

ISC BIND DoS Vulnerability (CVE-2023-2911) - Linux

ISC BIND is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; if...

7.5CVSS7.5AI score0.02575EPSS
Exploits0References1
OpenVAS
OpenVASadded 2023/06/22 12:0 a.m.32 views

ISC BIND DoS Vulnerability (CVE-2023-2829) - Linux

ISC BIND is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; if...

7.5CVSS7.5AI score0.00919EPSS
Exploits0References1
OpenVAS
OpenVASadded 2023/06/22 12:0 a.m.31 views

ISC BIND DoS Vulnerability (CVE-2023-2828) - Linux

ISC BIND is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; if...

7.5CVSS7.8AI score0.03776EPSS
Exploits0References1
OpenVAS
OpenVASadded 2023/06/22 12:0 a.m.22 views

ISC BIND DoS Vulnerability (CVE-2023-2911) - Windows

ISC BIND is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; if...

7.5CVSS7.5AI score0.02575EPSS
Exploits0References1
OpenVAS
OpenVASadded 2023/06/22 12:0 a.m.37 views

ISC BIND DoS Vulnerability (CVE-2023-2829) - Windows

ISC BIND is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; if...

7.5CVSS7.5AI score0.00919EPSS
Exploits0References1
OpenVAS
OpenVASadded 2023/06/22 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2023:2578-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.68603EPSS
Exploits9References19
Tenable Nessus
Tenable Nessusadded 2023/06/22 12:0 a.m.21 views

Slackware Linux 15.0 / current bind Vulnerability (SSA:2023-172-01)

The version of bind installed on the remote host is prior to 9.16.42 / 9.18.16. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-172-01 advisory. - If the recursive-clients quota is reached on a BIND 9 resolver configured with both stale-answer-enable yes; and...

7.5CVSS8AI score0.02575EPSS
Exploits0References2
OpenVAS
OpenVASadded 2023/06/22 12:0 a.m.26 views

Slackware: Security Advisory (SSA:2023-172-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.02575EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2023/06/21 10:47 p.m.50 views

CVE-2023-2828

A vulnerability was found in BIND. The effectiveness of the cache-cleaning algorithm used in named can be severely diminished by querying the resolver for specific RRsets in a certain order, effectively allowing the configured max-cache-size limit to exceed significantly...

7.5CVSS7.2AI score0.03776EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2023/06/21 10:25 p.m.22 views

CVE-2023-2911

A vulnerability was found in BIND. This security flaw occurs when the recursive-clients quota is reached on a BIND 9 resolver configured with stale-answer-enable yes; and stale-answer-client-timeout 0;. A sequence of serve-stale-related lookups could cause named to loop and terminate unexpectedly...

7.5CVSS7.1AI score0.02575EPSS
Exploits0References4
OSV
OSVadded 2023/06/21 5:15 p.m.24 views

CVE-2023-2911

If the recursive-clients quota is reached on a BIND 9 resolver configured with both stale-answer-enable yes; and stale-answer-client-timeout 0;, a sequence of serve-stale-related lookups could cause named to loop and terminate unexpectedly due to a stack overflow. This issue affects BIND 9 versio...

7.5CVSS6.7AI score0.02575EPSS
Exploits0References6
Rows per page
Query Builder