Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/03/31 5:24 p.m.1 views

CVE-2026-27853

A flaw was found in dnsdist. A remote attacker could send specially crafted DNS responses that, when processed by dnsdist using the DNSQuestion:changeName or DNSResponse:changeName methods in custom Lua code, may trigger an out-of-bounds write. This vulnerability can lead to a system crash,...

5.9CVSS5.9AI score0.00489EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/03/31 12:4 p.m.1 views

CVE-2026-27853 Out-of-bounds write when rewriting large DNS packets

An attacker might be able to trigger an out-of-bounds write by sending crafted DNS responses to a DNSdist using the DNSQuestion:changeName or DNSResponse:changeName methods in custom Lua code. In some cases the rewritten packet might become larger than the initial response and even exceed 65535...

5.9CVSS5.9AI score0.00489EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/03/31 12:4 p.m.21 views

CVE-2026-27853 Out-of-bounds write when rewriting large DNS packets

An attacker might be able to trigger an out-of-bounds write by sending crafted DNS responses to a DNSdist using the DNSQuestion:changeName or DNSResponse:changeName methods in custom Lua code. In some cases the rewritten packet might become larger than the initial response and even exceed 65535...

5.9CVSS0.00489EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2026/03/31 12:4 p.m.1 views

CVE-2026-27853

An attacker might be able to trigger an out-of-bounds write by sending crafted DNS responses to a DNSdist using the DNSQuestion:changeName or DNSResponse:changeName methods in custom Lua code. In some cases the rewritten packet might become larger than the initial response and even exceed 65535...

7.5CVSS5.3AI score0.00489EPSS
Exploits0
CVE
CVEadded 2026/03/31 12:4 p.m.7 views

CVE-2026-27853

CVE-2026-27853 affects dnsdist. The vulnerability arises when crafted DNS responses are processed by Lua code via DNSQuestion:changeName or DNSResponse:changeName, potentially causing an out-of-bounds write and denial of service. Connected advisories confirm dnsdist in multiple distros; Debian re...

7.5CVSS5.9AI score0.00489EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2026/03/31 12:0 a.m.4 views

PowerDNS DNSdist 安全漏洞

PowerDNS DNSdist is a proxy software provided by PowerDNS, which offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a security vulnerability that stems from out-of-bound writing when using the DNSQuestion:changeName or DNSResponse:changeName methods...

7.5CVSS5.8AI score0.00489EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.2 views

PT-2026-29246

Name of the Vulnerable Software and Affected Versions DNSdist affected versions not specified Description An attacker could trigger an out-of-bounds write by sending crafted DNS responses to DNSdist. This is possible when utilizing the DNSQuestion:changeName or DNSResponse:changeName methods with...

8.2CVSS5.2AI score0.01028EPSS
Exploits0References25
ATTACKERKB
ATTACKERKBadded 2007/04/12 7:19 p.m.1 views

CVE-2007-2004

Multiple SQL injection vulnerabilities in InoutMailingListManager 3.1 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter to changename.php and other unspecified vectors...

7.5CVSS6.4AI score0.01022EPSS
Exploits0References4
Rows per page
Query Builder