Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-54271

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.01327EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.18 views

Azure Linux 3.0 Security Update: bind (CVE-2023-4408)

The version of bind installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4408 advisory. - The DNS message parsing code in named includes a section whose computational complexity is overly high. It does...

7.5CVSS6.4AI score0.01327EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.32 views

Amazon Linux 2 : bind (ALAS-2024-2625)

The version of bind installed on the remote host is prior to 9.11.4-26.P2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2625 advisory. The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problem...

7.5CVSS6.4AI score0.01327EPSS
Exploits0References4
Amazon
Amazon
added 2024/08/20 12:0 a.m.27 views

Important: bind

Issue Overview: The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected named instance by exploiting this flaw. This...

7.5CVSS8AI score0.01327EPSS
Exploits0
OSV
OSV
added 2024/06/11 10:12 a.m.33 views

SUSE-SU-2024:1982-1 Security update for bind

This update for bind fixes the following issues: - CVE-2023-4408: Fixed denial of service during DNS message parsing with different names bsc1219851 - CVE-2023-50387: Fixed denial of service during DNS messages validation with DNSSEC signatures bsc1219823 - CVE-2023-50868: Fixed denial of service...

7.5CVSS8.1AI score0.99995EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.43 views

EulerOS 2.0 SP11 : bind (EulerOS-SA-2024-1783)

According to the versions of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : To keep its cache database efficient, named running as a recursive resolver occasionally attempts to clean up the database. It uses several methods,...

7.5CVSS6.9AI score0.99995EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.50 views

EulerOS 2.0 SP11 : bind (EulerOS-SA-2024-1795)

According to the versions of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : To keep its cache database efficient, named running as a recursive resolver occasionally attempts to clean up the database. It uses several methods,...

7.5CVSS6.9AI score0.99995EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2024/05/29 12:0 a.m.41 views

EulerOS Virtualization 2.11.1 : bind (EulerOS-SA-2024-1712)

According to the versions of the bind packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : To keep its cache database efficient, named running as a recursive resolver occasionally attempts to clean up the database. It uses...

7.5CVSS6.9AI score0.99995EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2024/04/12 12:0 a.m.68 views

AlmaLinux 9 : bind (ALSA-2024:1789)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:1789 advisory. - The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS...

7.5CVSS6.9AI score0.99995EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2024/03/22 12:0 a.m.29 views

F5 Networks BIG-IP : BIND vulnerability (K000138990)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.5 / 17.1.2. It is, therefore, affected by a vulnerability as referenced in the K000138990 advisory. The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not...

7.5CVSS6.4AI score0.01327EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/03/04 12:0 a.m.46 views

Fedora 38 : bind / bind-dyndb-ldap (2024-fae88b73eb)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-fae88b73eb advisory. Security Fixes - Validating DNS messages containing a lot of DNSSEC signatures could cause excessive CPU load, leading to a denial-of-service...

7.5CVSS7.1AI score0.99995EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2024/02/19 12:0 a.m.58 views

Ubuntu 20.04 LTS : Bind vulnerabilities (USN-6642-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6642-1 advisory. Shoham Danino, Anat Bremler-Barr, Yehuda Afek, and Yuval Shavitt discovered that Bind incorrectly handled parsing large DNS messages. A remote attacker...

7.5CVSS7AI score0.99995EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2024/02/14 12:0 a.m.61 views

Debian dsa-5621 : bind9 - security update

The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5621 advisory. - The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic,...

7.5CVSS6.9AI score0.99995EPSS
Exploits1References15
OpenVAS
OpenVAS
added 2024/02/14 12:0 a.m.32 views

ISC BIND DoS Vulnerability (CVE-2023-4408) - Linux

ISC BIND is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; if...

7.5CVSS7.4AI score0.01327EPSS
Exploits0References1
NVD
NVD
added 2024/02/13 2:15 p.m.28 views

CVE-2023-4408

The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected named instance by exploiting this flaw. This issue affects bot...

7.5CVSS7.7AI score0.01327EPSS
Exploits0References7
Prion
Prion
added 2024/02/13 2:15 p.m.36 views

Design/Logic Flaw

The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected named instance by exploiting this flaw. This issue affects bot...

5CVSS7.6AI score0.01327EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2024/02/13 2:4 p.m.53 views

CVE-2023-4408

The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected named instance by exploiting this flaw. This issue affects bot...

7.5CVSS6.6AI score0.01327EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2024/02/13 2:4 p.m.46 views

CVE-2023-4408

The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected named instance by exploiting this flaw. This issue affects bot...

7.5CVSS7.5AI score0.01327EPSS
Exploits0
Cvelist
Cvelist
added 2024/02/13 2:4 p.m.73 views

CVE-2023-4408 Parsing large DNS messages may cause excessive CPU load

The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected named instance by exploiting this flaw. This issue affects bot...

7.5CVSS7.9AI score0.01327EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2024/02/13 12:0 a.m.42 views

CVE-2023-4408

The DNS message parsing code in named includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected named instance by exploiting this flaw. This issue affects bot...

7.5CVSS6.7AI score0.01327EPSS
Exploits0References4
Rows per page
Query Builder