Lucene search
K

19 matches found

NVD
NVD
added 2026/03/20 4:16 a.m.6 views

CVE-2026-32946

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, the Harden-Runner that allows bypass of the egress-policy: block network restriction using DNS queries over TCP. Egress policies are enforced on GitHub runners by filtering...

4.6CVSS0.00253EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/20 3:58 a.m.1 views

CVE-2026-32946 Egress Policy Bypass via DNS over TCP in Harden-Runner (Community Tier)

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, the Harden-Runner that allows bypass of the egress-policy: block network restriction using DNS queries over TCP. Egress policies are enforced on GitHub runners by filtering...

4.6CVSS6.3AI score0.00253EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/20 3:58 a.m.4 views

CVE-2026-32946

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, the Harden-Runner that allows bypass of the egress-policy: block network restriction using DNS queries over TCP. Egress policies are enforced on GitHub runners by filtering...

4.6CVSS6.1AI score0.00253EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/17 6:37 p.m.7 views

Egress Policy Bypass via DNS over TCP in Harden-Runner (Community Tier)

Summary A vulnerability exists in the Community Tier of Harden-Runner that allows bypassing the egress-policy: block network restriction using DNS queries over TCP. Harden-Runner enforces egress policies on GitHub runners by filtering outbound connections at the network layer. When egress-policy:...

4.6CVSS6.2AI score0.00253EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/25 12:43 a.m.9 views

CVE-2025-61430

Improper handling of DNS over TCP in Simple DNS Plus v9 allows a remote attacker with querying access to the DNS server to cause the server to return request payloads from other clients. This happens when the TCP length prefix is malformed len differs from actual packet len, and due to a...

6.5CVSS6.7AI score0.00234EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/24 12:0 a.m.9 views

CVE-2025-61430

Improper handling of DNS over TCP in Simple DNS Plus v9 allows a remote attacker with querying access to the DNS server to cause the server to return request payloads from other clients. This happens when the TCP length prefix is malformed len differs from actual packet len, and due to a...

0.00234EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-5319

Malware in sbrugna...

7.8CVSS6.3AI score0.01887EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-5320

Malware in sbrugna...

7.8CVSS6.3AI score0.01328EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:11 a.m.8 views

CVE-2013-5479

The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service device reload via a crafted IPv4 DNS TCP stream, aka Bug ID CSCtn53730...

7.8CVSS6.8AI score0.01887EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/05/15 5:23 p.m.13 views

Bullfrog's DNS over TCP bypasses domain filtering

Summary Using tcp breaks blocking and allows DNS exfiltration. PoC name: test on: push: branches: - "" jobs: testBullFrog: runs-on: ubuntu-22.04 steps: - name: Use google dns run: | sudo resolvectl dns eth0 1.1.1.1 resolvectl status - name: Set up bullfrog to block everything uses:...

8.6CVSS6.8AI score0.00399EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2025/05/14 3:18 p.m.40 views

CVE-2025-47775

The CVE-2025-47775 refers to Bullfrog, a GitHub Action that blocks unauthorized outbound traffic in workflows. The issue: before version 0.8.4, Bullfrog’s TCP handling could bypass the intended block, enabling DNS data exfiltration and a sandbox bypass. Affected version range includes all release...

8.6CVSS6.3AI score0.00399EPSS
Exploits1References3Affected Software1
RedHat Linux
RedHat Linux
added 2023/10/05 2:14 p.m.5 views

glibc: Stack read overflow in getaddrinfo in no-aaaa mode

A flaw was found in glibc. When the getaddrinfo function is called with the AFUNSPEC address family and the system is configured with no-aaaa mode via /etc/resolv.conf, a DNS response via TCP larger than 2048 bytes can potentially disclose stack contents through the function returned address data...

6.5CVSS6.7AI score0.01508EPSS
Exploits1References4
OSV
OSV
added 2023/09/18 5:15 p.m.5 views

AZL-34732 CVE-2023-4527 affecting package glibc for versions less than 2.38-11

A flaw was found in glibc. When the getaddrinfo function is called with the AFUNSPEC address family and the system is configured with no-aaaa mode via /etc/resolv.conf, a DNS response via TCP larger than 2048 bytes can potentially disclose stack contents through the function returned address data...

6.5CVSS6.5AI score0.01508EPSS
Exploits1References1
F5 Networks
F5 Networks
added 2023/02/21 6:13 p.m.11 views

K23278332: A DNS over TCP packet is not rate-limited accurately using the single-endpoint DoS device flood vector

Security Advisory Description This issue occurs when all of the following conditions are met: Setting the correct DNS packet type in the denial-of-service DoS device sweep or flood vector. Matching traffic sends DNS over TCP. Impact The mitigation for DNS over TCP packets is not working as expect...

6.7AI score
Exploits0
Kitploit
Kitploit
added 2021/08/24 9:30 p.m.369 views

DNSMonster - Passive DNS Capture/Monitoring Framework

Passive DNS collection and monitoring built with Golang, Clickhouse and Grafana: dnsmonster implements a packet sniffer for DNS traffic. It can accept traffic from a pcap file, a live interface or a dnstap socket, and can be used to index and store thousands of DNS queries per second it has shown...

7.6AI score
Exploits0References6
NVD
NVD
added 2013/09/27 10:8 a.m.20 views

CVE-2013-5480

The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service device reload via a crafted IPv4 DNS TCP stream, aka Bug ID CSCuf28733...

7.8CVSS6.5AI score0.01328EPSS
Exploits0References1
Prion
Prion
added 2013/09/27 10:8 a.m.14 views

Code injection

The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service device reload via a crafted IPv4 DNS TCP stream, aka Bug ID CSCuf28733...

7.8CVSS7AI score0.01328EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2013/09/27 10:8 a.m.16 views

Design/Logic Flaw

The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service device reload via a crafted IPv4 DNS TCP stream, aka Bug ID CSCtn53730...

7.8CVSS7AI score0.01887EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2013/09/27 10:0 a.m.23 views

CVE-2013-5479

The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service device reload via a crafted IPv4 DNS TCP stream, aka Bug ID CSCtn53730...

6.5AI score0.01887EPSS
Exploits0References1
Rows per page
Query Builder