Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-3291

Malware in sbrugna...

9.8CVSS8.2AI score0.07219EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-8405

Malware in sbrugna...

5.9CVSS5.9AI score0.01524EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/02/06 3:17 a.m.17 views

CVE-2021-35004

This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link TL-WA1201 1.0.1 Build 20200709 rel.662445553 wireless access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of DNS response...

10CVSS7.5AI score0.07743EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/06 1:57 a.m.12 views

CVE-2022-25726

Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet...

8.2CVSS6.7AI score0.00354EPSS
Exploits0References1
Veracode
Veracode
added 2024/09/23 6:30 a.m.8 views

Denial Of Service (DoS)

github.com/coredns/coredns is vulnerable to Denial Of Service DoS. The vulnerability is due to improper handling of DNS responses by the resolver, which allows it to ignore valid replies, making it susceptible to forged responses from attackers...

7.5CVSS6.6AI score0.00613EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2024/05/23 9:55 p.m.82 views

CVE-2024-5228

The vulnerability CVE-2024-5228 affects TP-Link Omada ER605 routers, caused by a heap-based buffer overflow in Comexe DDNS response handling. The flaw stems from insufficient validation of the length of user-supplied DNS data before copying it into a fixed-length heap buffer, enabling remote code...

7.5CVSS8AI score0.00513EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/01/21 4:15 p.m.7 views

CVE-2021-35003

This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer C90 1.0.6 Build 20200114 rel.731645553 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of DNS responses. A crafted D...

9.8CVSS7.7AI score0.07743EPSS
Exploits0References1
Redos
Redos
added 2021/09/08 12:0 a.m.9 views

ROS-2-2151

2.2151 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote...

8.1CVSS8.5AI score0.53461EPSS
Exploits11
NVD
NVD
added 2020/03/25 9:15 p.m.26 views

CVE-2020-10881

This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of DNS responses. A crafted DNS messa...

10CVSS9.8AI score0.10911EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2020/03/25 12:0 a.m.10 views

PT-2020-12393 · Tp Link · Tp-Link Archer A7

Name of the Vulnerable Software and Affected Versions: TP-Link Archer A7 Firmware version 190726 AC1750 Description: This issue allows remote attackers to execute arbitrary code on affected installations. Authentication is not required to exploit this issue. The specific flaw exists within the...

10CVSS9.7AI score0.10911EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/10/31 12:0 a.m.645 views

MikroTik RouterOS < 6.44.6 LTS or 6.45.x < 6.45.7 Multiple Vulnerabilities

According to its self-reported version, the remote networking device is running a version of MikroTik RouterOS prior to 6.44.6 LTS or 6.45.x prior to 6.45.7. It is, therefore, affected by multiple vulnerabilities : - Relative Path Traversal in NPK Parsing - RouterOS 6.45.6 Stable, RouterOS 6.44.5...

8.8CVSS8.2AI score0.10274EPSS
Exploits4References7
CVE
CVE
added 2018/06/14 12:0 p.m.134 views

CVE-2018-8225

CVE-2018-8225 is a remote code execution vulnerability in Windows DNSAPI.dll that triggers when DNS responses are not handled correctly. Affected products span multiple Windows versions including Windows 7, Windows 8.1, Windows 10, and various Windows Server editions (2008, 2008 R2, 2012, 2012 R2...

9.3CVSS8.3AI score0.22257EPSS
Exploits0References3Affected Software1
Check Point Advisories
Check Point Advisories
added 2015/05/07 12:0 a.m.9 views

GNU C Library glibc getanswer_r Buffer Overflow (CVE-2015-1781)

A code execution vulnerability exists in GNU C Library. The vulnerability is due to an error within the getanswerr function when handling DNS response resulting in a buffer overflow. A remote attacker can exploit this vulnerability by providing a specially-crafted DNS response to an application...

6.8CVSS3.7AI score0.05012EPSS
Exploits0
Rows per page
Query Builder