Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2024/02/27 12:0 a.m.41 views

MikroTik RouterOS Insufficient Verification of Data Authenticity (CVE-2019-3979)

RouterOS versions 6.45.6 Stable, 6.44.5 Long-term, and below are vulnerable to a DNS unrelated data attack. The router adds all A records to its DNS cache even when the records are unrelated to the domain that was queried. Therefore, a remote attacker controlled DNS server can poison the router's...

7.5CVSS7.5AI score0.00917EPSS
Exploits0References2
OSV
OSV
added 2019/10/29 7:15 p.m.3 views

CVE-2019-3979

RouterOS versions 6.45.6 Stable, 6.44.5 Long-term, and below are vulnerable to a DNS unrelated data attack. The router adds all A records to its DNS cache even when the records are unrelated to the domain that was queried. Therefore, a remote attacker controlled DNS server can poison the router's...

7.5CVSS7.2AI score0.00917EPSS
Exploits0References1
Circl
Circl
added 2019/10/29 6:57 p.m.4 views

CVE-2019-3979

creationtimestamp| type| source ---|---|--- 2019-10-29 18:57:45+00:00| published-proof-of-concept| https://t.me/antichat/6903 2019-10-29 19:57:25+00:00| published-proof-of-concept| https://t.me/cybershit/608 2019-10-30 01:40:05+00:00| seen| https://t.me/dtpnk/368 2019-10-30 03:57:56+00:00|...

7.5CVSS7.1AI score0.00917EPSS
Exploits0References7
CVE
CVE
added 2019/10/28 9:33 p.m.160 views

CVE-2019-3979

CVE-2019-3979 affects MikroTik RouterOS versions 6.45.6 Stable, 6.44.5 Long-term, and earlier builds. The issue is a DNS cache-poisoning vulnerability where the router adds all A records from DNS responses to its cache, even if unrelated to the queried domain. A remote attacker-controlled DNS ser...

7.5CVSS7.5AI score0.00917EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder