Lucene search
K

4 matches found

OSV
OSV
added 2026/06/25 1:1 p.m.5 views

CVE-2026-52690 Spoofed answers can mark an authoritative non-EDNS capable

Spoofing replies to Recursor might mark an IP of an authoritative server as not supporting EDNS, causing valdiation of DNSSEC records served by that server to fail...

5.9CVSS5.9AI score0.00352EPSS
Exploits0References5
NVD
NVD
added 2026/03/25 2:16 p.m.4 views

CVE-2026-1519

If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excessive CPU. Authoritative-only servers are generally unaffected, although there are circumstances where authoritative servers may make recursive queries see:...

7.5CVSS0.01545EPSS
Exploits0References28
RedHat Linux
RedHat Linux
added 2024/04/30 1:32 p.m.3 views

bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources

A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host. This vulnerability applies only for systems where DNSSE...

7.5CVSS6.7AI score0.81729EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2022/09/29 12:0 a.m.11 views

PT-2022-21780 · Unknown · Go-Resolver

Name of the Vulnerable Software and Affected Versions: go-resolver affected versions not specified Description: The issue is related to incorrect DNSSEC validation. An attacker can cause the package to report successful validation for invalid, attacker-controlled records. The owner name of RRSIG...

7.7CVSS6.1AI score0.00227EPSS
Exploits0References8
Rows per page
Query Builder