Lucene search
K

11996 matches found

CVE
CVE
added 2021/04/29 12:55 a.m.837 views

CVE-2021-25215

CVE-2021-25215 affects BIND 9 upstream and downstream builds. The vulnerability is an assertion failure in the named process when handling DNAME-related queries, which can cause named to terminate. Affected versions include BIND 9.0.0–9.11.29, 9.12.0–9.16.13, and specific S1/“Supported Preview” b...

7.5CVSS6.6AI score0.11296EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2021/04/29 12:55 a.m.21 views

CVE-2021-25215 An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself

In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a query for a record...

7.5CVSS7.8AI score0.11296EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2021/04/29 12:55 a.m.50 views

CVE-2021-25215

In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a query for a record...

7.5CVSS7.2AI score0.11296EPSS
Exploits0
Debian CVE
Debian CVE
added 2021/04/29 12:55 a.m.26 views

CVE-2021-25214

In BIND 9.8.5 - 9.8.8, 9.9.3 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND 9 Supported Preview Edition, as well as release versions 9.17.0 - 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a malform...

6.5CVSS7.3AI score0.0594EPSS
Exploits0
ArchLinux
ArchLinux
added 2021/04/29 12:0 a.m.221 views

[ASA-202104-10] bind: multiple issues

Arch Linux Security Advisory ASA-202104-10 ========================================== Severity: High Date : 2021-04-29 CVE-ID : CVE-2021-25214 CVE-2021-25215 CVE-2021-25216 Package : bind Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1890 Summary ======= The packag...

9.8CVSS8.6AI score0.83406EPSS
Exploits0References9
CNNVD
CNNVD
added 2021/04/29 12:0 a.m.5 views

ISC BIND 安全漏洞

ISC BIND is a suite of open source software that implements the DNS protocol from ISC USA. A security vulnerability exists in ISC BIND that causes the receiving named server to inadvertently delete SOA records for problematic zones from the zone database...

6.5CVSS7AI score0.0594EPSS
Exploits0References34
ALT Linux
ALT Linux
added 2021/04/29 12:0 a.m.34 views

Security fix for the ALT Linux 10 package bind version 9.11.31-alt1

April 29, 2021 Stanislav Levin 9.11.31-alt1 - 9.11.28 - 9.11.31 fixes: CVE-2021-25214, CVE-2021-25215, CVE-2021-25216...

6.8CVSS7.6AI score0.83406EPSS
Exploits0
CISA
CISA
added 2021/04/29 12:0 a.m.30 views

ISC Releases Security Advisory for BIND

The Internet Systems Consortium ISC has released a security advisory that addresses a vulnerability affecting multiple versions of ISC Berkeley Internet Name Domain BIND. A remote attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and...

6.8CVSS2.2AI score0.83406EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/04/29 12:0 a.m.3 views

ISC BIND 缓冲区错误漏洞

ISC BIND is a suite of open source software that implements the DNS protocol from the US company ISC. BIND suffers from a buffer error vulnerability that stems from BIND's GSSAPI security policy...

9.8CVSS7.6AI score0.83406EPSS
Exploits0References21
NCSC
NCSC
added 2021/04/29 12:0 a.m.3 views

Vulnerabilities fixed in BIND

ISC has fixed vulnerabilities in BIND. The vulnerabilities can be be exploited by a remote malicious person to cause a denial-of-service or, in limited circumstances, executing arbitrary code under the privileges of named. Execution of arbitrary code is not possible with the default configuration...

9.8CVSS9.8AI score0.83406EPSS
Exploits0
CNNVD
CNNVD
added 2021/04/29 12:0 a.m.5 views

ISC BIND 安全漏洞

ISC BIND is a suite of open source software that implements the DNS protocol from the US company ISC. A security vulnerability exists in ISC BIND that stems from the fact that when answering a query for a DNAME, an assertion check may fail to process a record that requires a DNAME to resolve...

7.5CVSS7.3AI score0.11296EPSS
Exploits0References45
Tenable Nessus
Tenable Nessus
added 2021/04/29 12:0 a.m.36 views

Slackware 14.0 / 14.1 / 14.2 / current : bind (SSA:2021-118-01)

New bind packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2021-118-01. The text itself is copyright C Slackware Linux,...

9.8CVSS7.7AI score0.83406EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2021/04/28 12:0 a.m.28 views

CVE-2021-25214

In BIND 9.8.5 - 9.8.8, 9.9.3 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND 9 Supported Preview Edition, as well as release versions 9.17.0 - 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a malform...

6.5CVSS6.9AI score0.0594EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2021/04/28 12:0 a.m.63 views

CVE-2021-25216

In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version an...

9.8CVSS7.3AI score0.83406EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2021/04/28 12:0 a.m.48 views

CVE-2021-25215

In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a query for a record...

7.5CVSS6.9AI score0.11296EPSS
Exploits0References4
OSV
OSV
added 2021/04/28 12:0 a.m.2 views

UBUNTU-CVE-2021-25216

In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version an...

9.8CVSS7.4AI score0.83406EPSS
Exploits0References5
OSV
OSV
added 2021/04/28 12:0 a.m.1 views

UBUNTU-CVE-2021-25214

In BIND 9.8.5 - 9.8.8, 9.9.3 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND 9 Supported Preview Edition, as well as release versions 9.17.0 - 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a malform...

6.5CVSS6.9AI score0.0594EPSS
Exploits0References5
OSV
OSV
added 2021/04/28 12:0 a.m.3 views

UBUNTU-CVE-2021-25215

In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a query for a record...

7.5CVSS6.9AI score0.11296EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/04/28 12:0 a.m.2 views

PT-2021-3132

Name of the Vulnerable Software and Affected Versions BIND versions 9.5.0 through 9.11.29 BIND versions 9.12.0 through 9.16.13 BIND Supported Preview Edition versions 9.11.3-S1 through 9.11.29-S1 BIND Supported Preview Edition versions 9.16.8-S1 through 9.16.13-S1 BIND 9.17 development branch...

9.8CVSS8.2AI score0.93422EPSS
Exploits13References119
OSV
OSV
added 2021/04/20 4:43 p.m.1 views

GHSA-J2H6-73X8-22C4 Exposure of Sensitive Information to an Unauthorized Actor in ansible

A flaw was found in the Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower before and including versions 3.4.5 and 3.5.5 and 3.6.3 when the ldapattr and ldapentry community modules are used. The issue...

5.1CVSS7AI score0.00406EPSS
Exploits0References10
Rows per page
Query Builder