Lucene search
K

62 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/01 12:0 a.m.12 views

Synology DiskStation Manager Dnsmasq Out-of-bounds Write (CVE-2017-14491)

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service crash or execute arbitrary code via a crafted DNS response. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

9.8CVSS7.5AI score0.84925EPSS
Exploits6References38
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.56 views

Siemens SCALANCE W1750D, M800, S615, and RUGGEDCOM RM1224 Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2017-14491)

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service crash or execute arbitrary code via a crafted DNS response. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

9.8CVSS7.5AI score0.84925EPSS
Exploits6References42
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.35 views

Ubuntu: Security Advisory (USN-3430-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.93307EPSS
Exploits32References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.35 views

Mageia: Security Advisory (MGASA-2017-0364)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.93307EPSS
Exploits32References7
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.29 views

Mageia: Security Advisory (MGASA-2017-0367)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.93307EPSS
Exploits32References10
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2017:2619-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.93307EPSS
Exploits33References9
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2017:2618-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.93307EPSS
Exploits32References9
Openbugbounty
Openbugbounty
added 2020/05/31 12:28 a.m.13 views

135750925.ys.nb35.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1178820 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

0.6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2020/04/09 10:43 a.m.69 views

CVE-2017-14491

A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code...

9.8CVSS4.9AI score0.93307EPSS
Exploits32References2
Tenable Nessus
Tenable Nessus
added 2020/02/19 12:0 a.m.74 views

Arista Networks EOS DNS 2 byte heap based overflow RCE (SA0030)

The version of Arista Networks EOS running on the remote device is affected by a heap-based buffer overflow in dnsmasq. This vulnerability allows a remote, unauthenticated attacker to run arbitrary code, create a denial of service DoS or an out of memory situation. Note that Nessus has not tested...

9.8CVSS8.3AI score0.84925EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2017-1240)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.93307EPSS
Exploits22References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2017-1239)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.93307EPSS
Exploits22References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.43 views

NewStart CGSL MAIN 4.05 : dnsmasq Vulnerability (NS-SA-2019-0112)

The remote NewStart CGSL host, running version MAIN 4.05, has dnsmasq packages installed that are affected by a vulnerability: - A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it...

9.8CVSS8.5AI score0.84925EPSS
Exploits6References2
Prion
Prion
added 2019/08/01 9:15 p.m.70 views

Out-of-bounds

Improper bounds checking in Dnsmasq before 2.76 allows an attacker controlled DNS server to send large DNS packets that result in a read operation beyond the buffer allocated for the packet, a different vulnerability than CVE-2017-14491...

5CVSS8.4AI score0.84925EPSS
Exploits7References2Affected Software2
Tenable Nessus
Tenable Nessus
added 2019/05/14 12:0 a.m.39 views

EulerOS Virtualization 3.0.1.0 : dnsmasq (EulerOS-SA-2019-1423)

According to the versions of the dnsmasq packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement RA handling code. An attacker on the local...

9.8CVSS7.9AI score0.93307EPSS
Exploits32References7
Veracode
Veracode
added 2019/01/15 9:19 a.m.29 views

Remote Code Execution (RCE)

github.com/kubernetes/dns leverages the dnsmasq library which is vulnerable to a heap-based buffer overflow. An attacker could cause a denial of service or execute arbitrary code via crafted DNS response. This issue in dnsmasq has been assigned CVE-2017-14491...

9.8CVSS8.9AI score0.84925EPSS
Exploits6References47Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/11/27 12:0 a.m.146 views

Virtuozzo 6 : dnsmasq / dnsmasq-utils (VZLSA-2017-2838)

An update for dnsmasq is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS8.1AI score0.84925EPSS
Exploits6References3
Check Point Advisories
Check Point Advisories
added 2018/04/15 12:0 a.m.7 views

DNSmasq Response Heap Buffer Overflow (CVE-2017-14491) - Ver2

A buffer overflow vulnerability exists in DNSmasq. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

7.5CVSS4.5AI score0.84925EPSS
Exploits6
ICS
ICS
added 2017/11/17 12:0 a.m.234 views

Siemens SCALANCE W1750D, M800, S615, and RUGGEDCOM RM1224 (Update C)

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely/low skill level to exploit. Vendor: Siemens --------- Begin Update C Part 1 of 3 -------- Equipment: SCALANCE W1750D, M800, S615, and RUGGEDCOM RM1224 --------- End Update C Part 1 of 3 -------- Vulnerabilities: Resource...

9.8CVSS9.9AI score0.84925EPSS
Exploits16References9
OpenVAS
OpenVAS
added 2017/10/25 12:0 a.m.42 views

Fedora Update for dnsmasq FEDORA-2017-515264ae24

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.93307EPSS
Exploits32References2
Rows per page
Query Builder