Lucene search
K

8 matches found

Cvelist
Cvelist
added 2026/06/25 1:1 p.m.28 views

CVE-2026-52690 Spoofed answers can mark an authoritative non-EDNS capable

Spoofing replies to Recursor might mark an IP of an authoritative server as not supporting EDNS, causing valdiation of DNSSEC records served by that server to fail...

5.9CVSS0.00352EPSS
Exploits0References1
CVE
CVE
added 2026/06/25 1:1 p.m.10 views

CVE-2026-52690

CVE-2026-52690 affects the PowerDNS Recursor. Spoofed replies can cause an authoritative server’s IP to be marked as not supporting EDNS, leading to DNSSEC validation failures for records served by that server. The vulnerability’s impact is documented as enabling validation failures in the presen...

5.9CVSS5.8AI score0.00352EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/20 11:38 a.m.14 views

CVE-2026-42944

A flaw was found in Unbound, a Domain Name System DNS resolver. A remote attacker could trigger a heap overflow by sending specially crafted DNS reply packets. This occurs when Unbound attempts to encode multiple Name Server Identifier NSID or Extension Mechanisms for DNS EDNS Cookie options, or...

8.7CVSS5.7AI score0.00842EPSS
Exploits0References3
CVE
CVE
added 2026/05/20 9:20 a.m.42 views

CVE-2026-42944

NLnet Labs Unbound 1.14.0–1.25.0 is affected by a heap overflow when encoding multiple NSID and/or DNS Cookie EDNS and/or EDNS Padding options in replies. The vulnerability requires the options (nsid, answer-cookie, pad-responses) to be enabled, and a querier can trigger the overflow by attaching...

8.7CVSS5.8AI score0.00842EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/05/20 12:0 a.m.11 views

NLnet Labs Unbound 安全漏洞

NLnet Labs Unbound is a high-performance DNS resolver open-sourced by NLnet Labs. There are security vulnerabilities in the version of NLnet Labs Unbound from 1.14.0 to 1.25.0. These vulnerabilities stem from the truncation of size calculations when encoding multiple NSIDs and/or DNS Cookies, as...

8.7CVSS5.9AI score0.00842EPSS
Exploits0References3
OSV
OSV
added 2019/10/09 4:15 p.m.2 views

ALPINE-CVE-2018-5744

A failure to free memory can occur when processing messages having a specific combination of EDNS options. Versions affected are: BIND 9.10.7 - 9.10.8-P1, 9.11.3 - 9.11.5-P1, 9.12.0 - 9.12.3-P1, and versions 9.10.7-S1 - 9.11.5-S3 of BIND 9 Supported Preview Edition. Versions 9.13.0 - 9.13.6 of th...

7.5CVSS6.8AI score0.03353EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2019/06/11 12:0 a.m.5 views

March 19, 2019—KB4489893 (Preview of Monthly Rollup)

March 19, 2019—KB4489893 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4489881 released March 12, 2019 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addresses an...

7AI score
Exploits0
Akamai Blog
Akamai Blog
added 2019/01/30 7:0 p.m.70 views

DNS Flag Day & Akamai

Written by Jon Reed & Barry Greene DNS Flag Day is an industry event that promotes the adoption of the most up-to-date DNS features and ensures that non-standards-compliant servers don't negatively impact the global performance of the Internet. The 2019 DNS Flag Day will remove a number of...

0.4AI score
Exploits0
Rows per page
Query Builder