Lucene search
K

11 matches found

SUSE CVE
SUSE CVE
added 2026/03/31 11:28 p.m.5 views

SUSE CVE-2026-27854

An attacker might be able to trigger a use-after-free by sending crafted DNS queries to a DNSdist using the DNSQuestion:getEDNSOptions method in custom Lua code. In some cases DNSQuestion:getEDNSOptions might refer to a version of the DNS packet that has been modified, thus triggering a...

4.8CVSS5.7AI score0.00471EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/31 5:18 p.m.4 views

CVE-2026-27854

A flaw was found in DNSdist. An attacker could exploit this by sending crafted DNS queries that interact with the DNSQuestion:getEDNSOptions method in custom Lua code. This interaction can trigger a use-after-free vulnerability, potentially leading to a crash and a denial of service DoS for the...

4.8CVSS5.8AI score0.00471EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/31 12:31 p.m.5 views

EUVD-2026-17361

An attacker might be able to inject HTML content into the internal web dashboard by sending crafted DNS queries to a DNSdist instance where domain-based dynamic rules have been enabled via either DynBlockRulesGroup:setSuffixMatchRule or DynBlockRulesGroup:setSuffixMatchRuleFFI...

3.1CVSS5.9AI score0.00136EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/03/31 11:50 a.m.4 views

CVE-2026-0396

An attacker might be able to inject HTML content into the internal web dashboard by sending crafted DNS queries to a DNSdist instance where domain-based dynamic rules have been enabled via either DynBlockRulesGroup:setSuffixMatchRule or DynBlockRulesGroup:setSuffixMatchRuleFFI...

4.3CVSS5.3AI score0.00136EPSS
Exploits0
OSV
OSV
added 2020/01/15 5:15 p.m.2 views

DEBIAN-CVE-2015-5230

The DNS packet parsing/generation code in PowerDNS aka pdns Authoritative Server 3.4.x before 3.4.6 allows remote attackers to cause a denial of service crash via crafted query packets...

7.5CVSS6.9AI score0.09021EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2018/11/26 10:0 p.m.21 views

CVE-2018-14663

An issue has been found in PowerDNS DNSDist before 1.3.3 allowing a remote attacker to craft a DNS query with trailing data such that the addition of a record by dnsdist, for example an OPT record when adding EDNS Client Subnet, might result in the trailing data being smuggled to the backend as a...

5.9CVSS6AI score0.02572EPSS
Exploits0
OSV
OSV
added 2018/09/11 1:29 p.m.0 views

DEBIAN-CVE-2016-7068

An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 3.7.4 and 4.0.4, allowing a remote, unauthenticated attacker to cause an abnormal CPU usage load on the PowerDNS server by sending crafted DNS queries, which might result in a partial denial of service if th...

7.5CVSS6.6AI score0.07294EPSS
Exploits0References1
NVD
NVD
added 2018/09/11 1:29 p.m.23 views

CVE-2016-7068

An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 3.7.4 and 4.0.4, allowing a remote, unauthenticated attacker to cause an abnormal CPU usage load on the PowerDNS server by sending crafted DNS queries, which might result in a partial denial of service if th...

7.8CVSS6AI score0.07294EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2018/09/11 1:0 p.m.29 views

CVE-2016-7068

An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 3.7.4 and 4.0.4, allowing a remote, unauthenticated attacker to cause an abnormal CPU usage load on the PowerDNS server by sending crafted DNS queries, which might result in a partial denial of service if th...

7.8CVSS6.1AI score0.07294EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2018/09/11 1:0 p.m.45 views

CVE-2016-7068

An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 3.7.4 and 4.0.4, allowing a remote, unauthenticated attacker to cause an abnormal CPU usage load on the PowerDNS server by sending crafted DNS queries, which might result in a partial denial of service if th...

7.8CVSS7.2AI score0.07294EPSS
Exploits0
Prion
Prion
added 2009/03/11 2:19 p.m.20 views

Input validation

The DNS Resolver Cache Service aka DNSCache in Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008 does not properly cache crafted DNS responses, which makes it easier for remote attackers to predict transaction IDs and poison caches by sending many crafted...

6.4CVSS6.9AI score0.34442EPSS
Exploits1References11
Rows per page
Query Builder