Lucene search
+L

77 matches found

Microsoft CVE
Microsoft CVE
added 2026/03/22 8:1 a.m.8 views

gethostbyaddr and gethostbyaddr_r return invalid DNS hostnames

...

5.9CVSS5.8AI score0.00205EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2026/03/22 8:1 a.m.7 views

gethostbyaddr and gethostbyaddr_r may incorrectly handle DNS response

...

7.5CVSS5.8AI score0.00325EPSS
Exploits1
EUVD
EUVD
added 2026/03/20 9:31 p.m.6 views

EUVD-2026-13798

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification...

5.8AI score0.00205EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/20 9:31 p.m.6 views

EUVD-2026-13796

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the...

5.8AI score0.00325EPSS
Exploits1References2
NVD
NVD
added 2026/03/20 8:16 p.m.7 views

CVE-2026-4438

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification...

5.4CVSS0.00205EPSS
Exploits1References2
NVD
NVD
added 2026/03/20 8:16 p.m.5 views

CVE-2026-4437

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the...

7.5CVSS0.00325EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/20 8:16 p.m.3 views

CVE-2026-4437

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the...

7.5CVSS5.9AI score0.00325EPSS
Exploits1References2
OSV
OSV
added 2026/03/20 8:16 p.m.5 views

UBUNTU-CVE-2026-4437

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the...

7.5CVSS5.8AI score0.00325EPSS
Exploits1References3
OSV
OSV
added 2026/03/20 8:16 p.m.4 views

UBUNTU-CVE-2026-4438

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification...

5.4CVSS5.8AI score0.00205EPSS
Exploits1References3
CVE
CVE
added 2026/03/20 7:59 p.m.43 views

CVE-2026-4438

The CVE-2026-4438 issue affects the GNU C Library (glibc) gethostbyaddr/gethostbyaddr_r when NSSwitch DNS backend is configured; versions 2.34–2.43 may return invalid DNS hostnames. Impact per sources is a DNS-spec violation; no exploitation details are provided in the documents. A patched versio...

5.4CVSS5.8AI score0.00205EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/03/20 7:59 p.m.31 views

CVE-2026-4438 gethostbyaddr and gethostbyaddr_r return invalid DNS hostnames

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification...

0.00205EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/20 7:59 p.m.13 views

CVE-2026-4438

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification...

5.8AI score0.00205EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/20 7:59 p.m.2 views

CVE-2026-4438 gethostbyaddr and gethostbyaddr_r return invalid DNS hostnames

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification...

5.8AI score0.00205EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2026/03/20 7:59 p.m.5 views

CVE-2026-4438

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification...

5.4CVSS5.3AI score0.00205EPSS
Exploits1
OSV
OSV
added 2026/03/20 7:59 p.m.3 views

CVE-2026-4438 gethostbyaddr and gethostbyaddr_r return invalid DNS hostnames

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification...

5.4CVSS5.9AI score0.00205EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/03/20 7:59 p.m.16 views

CVE-2026-4437

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the...

5.8AI score0.00325EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/03/20 7:59 p.m.35 views

CVE-2026-4437 gethostbyaddr and gethostbyaddr_r may incorrectly handle DNS response

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the...

0.00325EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/20 7:59 p.m.1 views

CVE-2026-4437 gethostbyaddr and gethostbyaddr_r may incorrectly handle DNS response

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the...

5.8AI score0.00325EPSS
Exploits1References1
CVE
CVE
added 2026/03/20 7:59 p.m.48 views

CVE-2026-4437

CVE-2026-4437 concerns glibc’s DNS response parsing. According to the initial document, calling gethostbyaddr/gethostbyaddr_r with a configured nsswitch.conf DNS backend in GNU C Library versions 2.34–2.43 can yield a crafted DNS response that violates the DNS specification, causing the applicati...

7.5CVSS5.8AI score0.00325EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2026/03/20 7:59 p.m.6 views

CVE-2026-4437

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server, result in a violation of the DNS specification that causes the...

7.5CVSS5.2AI score0.00325EPSS
Exploits1
Rows per page
Query Builder