CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2025/11/05 12:1 p.m.•6 views

Important: Red Hat Security Advisory: bind9.16 security update

An update for bind9.16 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.6CVSS6.7AI score0.00509EPSS

Exploits1References3

RedHat Linux•added 2025/11/05 12:1 p.m.•2 views

bind: Cache poisoning attacks with unsolicited RRs

A vulnerability exists in BIND’s DNS resolver logic that makes it overly permissive when accepting resource records RRs in responses. Under certain conditions, this flaw allows attackers to inject unsolicited or forged DNS records into the cache. This can be exploited to poison the resolver cache...

8.6CVSS6AI score0.00509EPSS

OSV•added 2025/11/05 9:0 a.m.•0 views

UBUNTU-CVE-2025-52565

runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting /dev/pts/$n to /dev/console inside the container, an attacker can...

8.4CVSS6.6AI score0.00526EPSS

OSV•added 2025/11/05 9:0 a.m.•1 views

UBUNTU-CVE-2025-31133

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.8CVSS6.8AI score0.00673EPSS

Exploits2References4

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988904)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988904 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Bail from dwc3gadgetexit if dwc-gadget is NULL There exists a possible scenari...

5.5CVSS5AI score0.00222EPSS

Positive Technologies•added 2025/11/05 12:0 a.m.•4 views

PT-2025-45166

Name of the Vulnerable Software and Affected Versions Youki versions 0.5.6 and below Description Youki is a container runtime written in Rust. Insufficient initial validation of the /dev/null source allows for container escape when bind mounting the container's /dev/null as a file mask. This occu...

10CVSS6.6AI score0.00216EPSS

Exploits0References11

Amazon•added 2025/11/05 12:0 a.m.•2 views

Important: bind

Issue Overview: Querying for records within a specially crafted zone containing certain malformed DNSKEY records can lead to CPU exhaustion. This issue affects BIND 9 versions 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1...

7.5CVSS6.9AI score0.1096EPSS

Exploits0

Tenable Nessus•added 2025/11/05 12:0 a.m.•3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989148)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989148 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/rockchip: vop: fix possible null-ptr-deref in vopbind It will cause null-ptr-deref in...

5.5CVSS5.9AI score0.00253EPSS

AlmaLinux•added 2025/11/05 12:0 a.m.•4 views

Important: bind security update

The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. Security Fixes:...

AlmaLinux•added 2025/11/05 12:0 a.m.•3 views

Important: bind9.16 security update

Amazon•added 2025/11/05 12:0 a.m.•3 views

Exploits1References6

Important: bind

Issue Overview: Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12,...

8.6CVSS5.8AI score0.1096EPSS

Exploits1

OSV•added 2025/11/05 12:0 a.m.•4 views

ALSA-2025:19835 Important: bind security update

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

RHEL 8 : bind9.16 (RHSA-2025:19793)

"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:19793 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named...

8.6CVSS6.6AI score0.00509EPSS

Exploits1References6

Tenable Nessus•added 2025/11/05 12:0 a.m.•4 views

Amazon Linux 2 : bind, --advisory ALAS2-2025-3054 (ALAS-2025-3054)

The version of bind installed on the remote host is prior to 9.11.4-26.P2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3054 advisory. Querying for records within a specially crafted zone containing certain malformed DNSKEY records can lead to CPU exhaustion. This...

7.5CVSS6.3AI score0.1096EPSS

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989211)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989211 advisory. In the Linux kernel, the following vulnerability has been resolved: net: usb: fix possible use-after-free in smsc75xxbind The commit 46a8b29c6306 net: usb: fix memor...

7.8CVSS5.8AI score0.00228EPSS

OSV•added 2025/11/05 12:0 a.m.•6 views

ALSA-2025:19793 Important: bind9.16 security update