Lucene search
K

60 matches found

nessus
nessus
added 2024/05/11 12:0 a.m.18 views

RHEL 5 : dnsmasq (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dnsmasq: multiple queries forwarded for the same name makes forging replies easier for an off-path attack...

4.9AI score0.04873EPSS
Exploits2References5
nessus
nessus
added 2023/12/27 12:0 a.m.31 views

NewStart CGSL MAIN 6.06 : dnsmasq Multiple Vulnerabilities (NS-SA-2023-0078)

The remote NewStart CGSL host, running version MAIN 6.06, has dnsmasq packages installed that are affected by multiple vulnerabilities: - A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with DNSSEC data. A...

8.3CVSS7.9AI score0.86692EPSS
Exploits3References17
f5
f5
added 2023/02/21 7:57 p.m.63 views

K98221124: Multiple dnsmasq vulnerabilities CVE-2020-25684, CVE-2020-25685, and CVE-2020-25686

Security Advisory Description CVE-2020-25684 A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in the forward.c:replyquery if the reply destination address/port is used by the pending forwarded queries. However, it does not use the...

4.3CVSS6.7AI score0.04873EPSS
Exploits2Affected Software1
susecve
susecve
added 2023/02/15 3:53 a.m.4 views

SUSE CVE-2020-25686

A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not check for an existing pending request for the same name and forwards a new request. By default, a maximum of 150 pending queries can be sent to upstream servers, so there can be at most 150 queries for the...

5.4CVSS6.3AI score0.04873EPSS
Exploits2References12
ibm
ibm
added 2021/08/04 5:40 p.m.31 views

Security Bulletin: IBM Security Privileged Identity Manager is affected by security vulnerabilities (CVE-2020-25684, CVE-2020-25685, CVE-2020-25686)

Summary IBM Security Privileged Identity Manager has addressed issues for dnsmasq as follows. Vulnerability Details CVEID: CVE-2020-25684 DESCRIPTION: dnsmasq is vulnerable to dns cache poisoning, caused by the failure to validate the combination of address/port and the query-id fields of DNS...

4.3CVSS0.7AI score0.04873EPSS
Exploits2Affected Software1
openvas
openvas
added 2021/06/09 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2021:14603-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS5.7AI score0.86692EPSS
Exploits2References6
openvas
openvas
added 2021/06/09 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2021:0163-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS6.6AI score0.86692EPSS
Exploits2References2
cbl_mariner
cbl_mariner
added 2021/05/06 11:56 p.m.22 views

CVE-2020-25686 affecting package dnsmasq 2.79-11

CVE-2020-25686 affecting package dnsmasq 2.79-11. An upgraded version of the package is available that resolves this issue...

4.3CVSS7.4AI score0.04873EPSS
Exploits2
openvas
openvas
added 2021/05/03 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2021-1775)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.04873EPSS
Exploits2References2
nessus
nessus
added 2021/04/30 12:0 a.m.34 views

EulerOS 2.0 SP3 : dnsmasq (EulerOS-SA-2021-1775)

According to the versions of the dnsmasq packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be...

7.5CVSS6.6AI score0.04873EPSS
Exploits2References4
openvas
openvas
added 2021/04/19 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2021:0166-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS6.2AI score0.86692EPSS
Exploits2References5
openvas
openvas
added 2021/04/13 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2021-1758)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS6.6AI score0.86692EPSS
Exploits2References2
nessus
nessus
added 2021/03/10 12:0 a.m.31 views

EulerOS Virtualization for ARM 64 3.0.2.0 : dnsmasq (EulerOS-SA-2021-1389)

According to the versions of the dnsmasq packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not check for an existing pendi...

8.3CVSS7.9AI score0.86692EPSS
Exploits2References8
openvas
openvas
added 2021/03/05 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2021-1389)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS6.6AI score0.86692EPSS
Exploits2References2
openvas
openvas
added 2021/03/05 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2021-1551)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS6.1AI score0.86692EPSS
Exploits2References2
openvas
openvas
added 2021/02/25 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-4698-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS6.8AI score0.86692EPSS
Exploits2References3
nessus
nessus
added 2021/02/10 12:0 a.m.34 views

Slackware 14.0 / 14.1 / 14.2 / current : dnsmasq (SSA:2021-040-01)

New dnsmasq packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2021-040-01. The text itself is copyright C Slackware...

8.3CVSS6.7AI score0.86692EPSS
Exploits2References8
slackware
slackware
added 2021/02/09 8:59 p.m.117 views

[slackware-security] dnsmasq

New dnsmasq packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/dnsmasq-2.84-i586-1slack14.2.txz: Upgraded. This update fixes bugs and remotely exploitable security issues: Use the...

8.3CVSS0.3AI score0.86692EPSS
Exploits2
openvas
openvas
added 2021/02/05 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2021-1244)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS6.6AI score0.86692EPSS
Exploits2References2
debian
debian
added 2021/02/04 7:37 a.m.45 views

[SECURITY] [DSA 4844-1] dnsmasq security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4844-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 02, 2021 https://www.debian.org/security/faq -...

8.3CVSS1.3AI score0.86692EPSS
Exploits2
Rows per page
Query Builder