EUVD-2026-36489

Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, Netty's DnsResolveContext insufficiently validates the bailiwick of NS records, enabling DNS Cache Poisoning. An attacker controlling an authoritative name...

OESA-2026-2193 python-aiohttp security update

Async http client/server framework asyncio. Security Fixes: Insufficient restrictions in header/trailer handling could cause uncapped memory usage.CVE-2026-22815 An unbounded DNS cache could result in excessive memory usage possibly resulting in a DoS situation.CVE-2026-34513 An attacker who...

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS via the DNS cache. An attacker can cause the controller to panic and become unavailable by inserting a specially crafted DNS response into the cache, either by intercepting and modifying DNS traffic or by controlli...

ISC BIND Cache Poisoning Vulnerability (CVE-2025-40778) - Windows

ISC BIND is prone to cache poisoning attacks with unsolicited RRs. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; if...