Lucene search
+L

2024 matches found

RedhatCVE
RedhatCVE
added 2026/04/09 7:22 p.m.8 views

CVE-2025-71058

Dual DHCP DNS Server 8.01 improperly accepts and caches UDP DNS responses without validating that the response originates from a legitimate configured upstream DNS server. The implementation matches responses primarily by TXID and inserts results into the cache, enabling a remote attacker to inje...

9.1CVSS6AI score0.00451EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/04/07 9:32 p.m.29 views

CVE-2026-35406

Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1...

7.5CVSS5.7AI score0.00383EPSS
Exploits0
NVD
NVD
added 2026/04/07 7:16 p.m.7 views

CVE-2025-71058

Dual DHCP DNS Server 8.01 improperly accepts and caches UDP DNS responses without validating that the response originates from a legitimate configured upstream DNS server. The implementation matches responses primarily by TXID and inserts results into the cache, enabling a remote attacker to inje...

9.1CVSS0.00451EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/04 12:0 a.m.6 views

Fedora 43 : bind9-next (2026-a6efefa854)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-a6efefa854 advisory. Update to 9.21.20 rhbz2440560 Security Fixes: - Fix unbounded NSEC3 iterations when validating referrals to unsigned delegations. CVE-2026-1519 - Fi...

7.5CVSS7.5AI score0.01545EPSS
Exploits0References5
Debian
Debian
added 2026/03/27 10:42 p.m.8 views

[SECURITY] [DSA 6181-1] bind9 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6181-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 27, 2026 https://www.debian.org/security/faq -...

7.5CVSS5.9AI score0.01545EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/26 2:59 p.m.6 views

CVE-2026-28519

arduino-TuyaOpen before version 1.2.1 contains a heap-based buffer overflow vulnerability in the DnsServer component. An attacker on the same local area network who controls the LAN DNS server can send malicious DNS responses to overflow the heap buffer, potentially allowing execution of arbitrar...

8.8CVSS6.5AI score0.00396EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/25 4:19 p.m.5 views

CVE-2026-3119

A flaw was found in BIND, specifically within the named daemon. An authenticated remote attacker, possessing a valid Transaction Signature TSIG key configured on the server, could send a specially crafted query containing a TKEY record. This action may cause the named daemon to crash, leading to ...

6.5CVSS5.8AI score0.00576EPSS
Exploits0References6
OSV
OSV
added 2026/03/25 2:16 p.m.2 views

CVE-2026-3591

A use-after-return vulnerability exists in the named server when handling DNS queries signed with SIG0. Using a specially-crafted DNS request, an attacker may be able to cause an ACL to improperly mismatch an IP address. In a default-allow ACL denying only specific IP addresses, this may lead to...

5.4CVSS7.3AI score0.0036EPSS
Exploits0References3
CVE
CVE
added 2026/03/25 1:34 p.m.19 views

CVE-2026-3591

CVE-2026-3591 - Summary A stack use-after-return vulnerability exists in the BIND 9 named server’s SIG(0) handling. A specially crafted DNS request can cause the ACL to mis-match an IP address, potentially bypassing access controls in default-allow ACLs (where all non-denied IPs are allowed). The...

5.4CVSS5.8AI score0.0036EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 2026/03/24 2:13 p.m.5 views

CVE-2026-28753

NGINX Plus and NGINX Open Source have a vulnerability in the ngxmailsmtpmodule module due to the improper handling of CRLF sequences in DNS responses. This allows an attacker-controlled DNS server to inject arbitrary headers into SMTP upstream requests, leading to potential request manipulation...

6.3CVSS5.9AI score0.00264EPSS
Exploits0
NVD
NVD
added 2026/03/16 2:19 p.m.15 views

CVE-2026-28519

arduino-TuyaOpen before version 1.2.1 contains a heap-based buffer overflow vulnerability in the DnsServer component. An attacker on the same local area network who controls the LAN DNS server can send malicious DNS responses to overflow the heap buffer, potentially allowing execution of arbitrar...

8.8CVSS0.00396EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.11 views

arduino-TuyaOpen 安全漏洞

Arduino-TuyaOpen is an IoT development framework based on Arduino, open-sourced by Tuya. Versions of Arduino-TuyaOpen prior to 1.2.1 contained security vulnerabilities. These vulnerabilities stemmed from a heap-based buffer overflow in the DnsServer component, which could allow for the execution ...

8.8CVSS6.2AI score0.00396EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/06 10:8 p.m.9 views

EUVD-2026-10043

CoreDNS Loop Detection Denial of Service Vulnerability...

7.5CVSS5.8AI score0.01093EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/02/27 4:13 a.m.6 views

CVE-2026-27831

rldns is an open source DNS server. Version 1.3 has a heap-based out-of-bounds read that leads to denial of service. Version 1.4 contains a patch for the issue...

7.5CVSS5.9AI score0.00425EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/02/26 12:0 a.m.8 views

rldns 缓冲区错误漏洞

rldns is a DNS server developed by BlueDragonSecurity’s individual developers. Version 1.3 of rldns contains a buffer error vulnerability; this vulnerability stems from heap out-of-bounds reading, which may lead to a denial-of-service attack...

7.5CVSS6AI score0.00425EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/18 3:4 p.m.13 views

Security Bulletin: Multiple vulnerabilities impact AIX/VIOS due to ISC BIND (CVE-2025-40778, CVE-2025-40780, CVE-2025-8677)

Summary Vulnerabilities in ISC BIND could allow an attacker to inject forged data into the cache CVE-2025-40778, predict the source port and query ID that BIND will use CVE-2025-40780, or cause CPU exhaustion CVE-2025-8677. AIX uses ISC BIND as as part of its DNS functions. Vulnerability Details...

8.6CVSS5.6AI score0.1096EPSS
Exploits1Affected Software2
Rosalinux
Rosalinux
added 2026/02/16 12:24 p.m.13 views

Advisory ROSA-SA-2026-3203

Software: unbound 1.16.2 OS: ROSA Virtualization 2.1 unaffected versions = unbound-1.16.2-5.9.rv3 affected versions unbound-1.16.2-5.9.rv3 CVE-ID: CVE-2025-5994 BDU-ID: 2025-12600 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Unbound DNS server is related to the loading of external unreliable...

8.7CVSS6.5AI score0.00188EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/02/13 12:0 a.m.22 views

PT-2026-8231

CVE-2026-26255 - Windows DNS Server Authentication Bypass CVE ID : CVE-2026-26255 Published : Feb. 13, 2026, 4:15 a.m. | 3 hours, 16 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

5.5AI score
Exploits0References1
Fedora
Fedora
added 2026/02/07 1:9 a.m.9 views

[SECURITY] Fedora 42 Update: bind-dyndb-ldap-11.11-9.fc42

This package provides an LDAP back-end plug-in for BIND. It features support for dynamic updates and internal caching, to lift the load off of your LDAP server...

7.5CVSS5.5AI score0.08219EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/02 12:0 a.m.6 views

EulerOS 2.0 SP13 : bind (EulerOS-SA-2026-1205)

According to the versions of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In specific circumstances, due to a weakness in the Pseudo Random Number Generator PRNG that is used, it is possible for an attacker to predict the...

8.6CVSS5.6AI score0.00509EPSS
Exploits1References3
Rows per page
Query Builder