Lucene search
K

5 matches found

ATTACKERKB
ATTACKERKB
added 2022/01/01 12:15 a.m.7 views

CVE-2021-45954

Dnsmasq 2.86 has a heap-based buffer overflow in extractname called from answerauth and FuzzAuth. NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge...

9.8CVSS8AI score0.0259EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2021/07/06 12:0 a.m.2 views

PT-2021-7716 · Dnsmasq +2 · Dnsmasq +2

Name of the Vulnerable Software and Affected Versions: Dnsmasq affected versions not specified Description: The issue is related to a buffer overflow in the extract name function of the Dnsmasq DNS server. This could allow a remote attacker to access confidential data, compromise its integrity, a...

9.8CVSS9.6AI score0.0259EPSS
Exploits7References43
Positive Technologies
Positive Technologies
added 2021/07/06 12:0 a.m.3 views

PT-2021-7713 · Dnsmasq +2 · Dnsmasq +2

Name of the Vulnerable Software and Affected Versions: Dnsmasq affected versions not specified Description: The issue is related to a buffer overflow in the extract name function of the fuzz util.c component of the Dnsmasq DNS server. This could allow a remote attacker to access confidential data...

10CVSS9.6AI score0.0259EPSS
Exploits7References43
OSV
OSV
added 2021/01/20 5:15 p.m.1 views

DEBIAN-CVE-2020-25682

A flaw was found in dnsmasq before 2.83. A buffer overflow vulnerability was discovered in the way dnsmasq extract names from DNS packets before validating them with DNSSEC data. An attacker on the network, who can create valid DNS replies, could use this flaw to cause an overflow with arbitrary...

8.1CVSS7.2AI score0.70754EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2021/01/19 3:6 p.m.3 views

dnsmasq: heap-based buffer overflow with large memcpy in sort_rrset() when DNSSEC is enabled

A flaw was found in dnsmasq. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. This flaw allows a remote attacker, who can create valid DNS replies, to cause an overflow in a heap-allocated memory. This flaw is caused b...

7.1CVSS7.7AI score0.86692EPSS
Exploits0References6
Rows per page
Query Builder