Lucene search
K

11996 matches found

OSV
OSV
added 2021/02/18 8:34 a.m.2 views

SUSE-SU-2021:14632-1 Security update for bind

This update for bind fixes the following issues: - CVE-2020-8625: A vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack bsc1182246, CVE-2020-8625...

8.1CVSS8.3AI score0.64161EPSS
Exploits0References3
OSV
OSV
added 2021/02/18 8:32 a.m.4 views

SUSE-SU-2021:0503-1 Security update for bind

This update for bind fixes the following issues: - CVE-2020-8625: A vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack bsc1182246, CVE-2020-8625...

8.1CVSS8.3AI score0.64161EPSS
Exploits0References3
NCSC
NCSC
added 2021/02/18 12:0 a.m.3 views

Vulnerability fixed in BIND

A vulnerability has been fixed in ISC BIND. A malicious party could potentially exploit the vulnerability to cause a denial-of-service cause. This vulnerability can only be exploited when BIND is configured to make use of GSS-TSIG. This is not the default configuration. In environments where BIND...

8.1CVSS6.8AI score0.64161EPSS
Exploits0
ALT Linux
ALT Linux
added 2021/02/18 12:0 a.m.32 views

Security fix for the ALT Linux 10 package bind version 9.11.28-alt1

Feb. 18, 2021 Stanislav Levin 9.11.28-alt1 - 9.11.25 - 9.11.28 fixes: CVE-2020-8625...

6.8CVSS8.3AI score0.64161EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/02/18 12:0 a.m.15 views

ISC BIND Buffer Overflow Vulnerability (CVE-2020-8625) - Linux

ISC BIND is prone to a buffer overflow vulnerability in the GSSAPI security policy negotiation. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

8.1CVSS8.3AI score0.64161EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/02/18 12:0 a.m.35 views

ISC BIND Buffer Overflow Vulnerability (CVE-2020-8625) - Windows

ISC BIND is prone to a buffer overflow vulnerability in the GSSAPI security policy negotiation. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

8.1CVSS8.3AI score0.64161EPSS
Exploits0References1
NVD
NVD
added 2021/02/17 11:15 p.m.18 views

CVE-2020-8625

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

8.1CVSS0.64161EPSS
Exploits0References11
OSV
OSV
added 2021/02/17 11:15 p.m.2 views

DEBIAN-CVE-2020-8625

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

8.1CVSS7.1AI score0.64161EPSS
Exploits0References1
OSV
OSV
added 2021/02/17 11:15 p.m.3 views

ALPINE-CVE-2020-8625

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

8.1CVSS7.6AI score0.64161EPSS
Exploits0References1
OSV
OSV
added 2021/02/17 11:15 p.m.29 views

CVE-2020-8625

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

8.1CVSS8.2AI score0.64161EPSS
Exploits0References11
Prion
Prion
added 2021/02/17 11:15 p.m.53 views

Default configuration

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

6.8CVSS8AI score0.64161EPSS
Exploits0References11Affected Software4
CVE
CVE
added 2021/02/17 10:40 p.m.1467 views

CVE-2020-8625

CVE-2020-8625 concerns a buffer overflow in BIND’s SPNEGO/GSS-API security policy implementation. The issue affects BIND versions spanning 9.5.0 up to 9.11.27, 9.12.0 up to 9.16.11, and specific 9.11.3-S1 to 9.11.27-S1 and 9.16.8-S1 to 9.16.11-S1, plus 9.17.0–9.17.1 in development branches. A vul...

8.1CVSS8.4AI score0.64161EPSS
Exploits0References11Affected Software1
Debian CVE
Debian CVE
added 2021/02/17 10:40 p.m.35 views

CVE-2020-8625

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

8.1CVSS7.1AI score0.64161EPSS
Exploits0
Cvelist
Cvelist
added 2021/02/17 10:40 p.m.24 views

CVE-2020-8625 A vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

8.1CVSS8.3AI score0.64161EPSS
Exploits0References11
AlpineLinux
AlpineLinux
added 2021/02/17 10:40 p.m.34 views

CVE-2020-8625

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

8.1CVSS8.5AI score0.64161EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2021/02/17 10:9 a.m.33 views

Security Bulletin: IBM MQ Appliance is affected by multiple BIND vulnerabilities (CVE-2020-8622, CVE-2020-8623, CVE-2020-8624)

Summary IBM MQ Appliance has resolved multiple BIND vulnerabilities. Vulnerability Details CVEID: CVE-2020-8622 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by an assertion failure when attempting to verify a truncated response to a TSIG-signed request. By sending a...

7.5CVSS1.1AI score0.06348EPSS
Exploits0Affected Software1
UbuntuCve
UbuntuCve
added 2021/02/17 12:0 a.m.55 views

CVE-2020-8625

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

8.1CVSS7AI score0.64161EPSS
Exploits0References4
OSV
OSV
added 2021/02/17 12:0 a.m.2 views

UBUNTU-CVE-2020-8625

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

8.1CVSS7.1AI score0.64161EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/02/05 12:0 a.m.29 views

EulerOS 2.0 SP9 : bind (EulerOS-SA-2021-1261)

According to the version of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In ISC BIND9 versions BIND 9.11.14 - 9.11.19, BIND 9.14.9 - 9.14.12, BIND 9.16.0 - 9.16.3, BIND Supported Preview Edition 9.11.14-S1 - 9.11.19-S1:...

4.9CVSS6.4AI score0.02088EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/02/05 12:0 a.m.37 views

EulerOS 2.0 SP9 : bind (EulerOS-SA-2021-1242)

According to the version of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In ISC BIND9 versions BIND 9.11.14 - 9.11.19, BIND 9.14.9 - 9.14.12, BIND 9.16.0 - 9.16.3, BIND Supported Preview Edition 9.11.14-S1 - 9.11.19-S1:...

4.9CVSS6.4AI score0.02088EPSS
Exploits0References2
Rows per page
Query Builder