Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

AstraLinux
AstraLinuxadded 2026/01/13 2:1 p.m.2 views

Astra Linux - уязвимость в bind9

In specific circumstances, due to a weakness in the Pseudo Random Number Generator PRNG that is used, it is possible for an attacker to predict the source port and query ID that BIND will use. This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.1...

8.6CVSS6.5AI score0.00025EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletinsadded 2025/12/16 10:59 a.m.7 views

Security Bulletin: Vulnerability in BIND affects IBM Netezza Appliance

Summary The BIND package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVEs CVE-2025-8677, CVE-2025-40780, CVE-2025-40778 Vulnerability Details CVEID:CVE-2025-8677 DESCRIPTION: Querying for records within a specially crafted zone containing certain malforme...

8.6CVSS6.3AI score0.00071EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linuxadded 2025/11/06 3:50 p.m.3 views

bind: Cache poisoning due to weak PRNG

A vulnerability was found in BIND resolvers caused by a weakness in the Pseudo Random Number Generator PRNG. This weakness allows an attacker to potentially predict the source port and query ID used by BIND, enabling cache poisoning attacks. If successful, the attacker can inject malicious DNS...

8.6CVSS6.1AI score0.00025EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletinsadded 2025/11/06 2:45 p.m.6 views

Security Bulletin: IBM i is affected by BIND accepting records with untrusted data, predictable port and query ID, and resource exhaustions in Domain Name System due to multiple vulnerabilities.

Summary Domain Name System for IBM i is vulnerable to BIND accepting records with forged data CVE-2025-40778, prediction of port and ID due to weakness in pseudo random number generator CVE-2025-40780, various resource exhaustions when being flooded with valid or invalid HTTP/2 traffic...

8.6CVSS6.4AI score0.05622EPSS
Exploits1Affected Software6
OSV
OSVadded 2025/10/22 4:15 p.m.1 views

DEBIAN-CVE-2025-40780

In specific circumstances, due to a weakness in the Pseudo Random Number Generator PRNG that is used, it is possible for an attacker to predict the source port and query ID that BIND will use. This issue affects BIND 9 versions 9.16.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.1...

8.6CVSS6.2AI score0.00025EPSS
Exploits0References1
OSV
OSVadded 2021/08/19 11:15 a.m.1 views

CVE-2021-31228

An issue was discovered in HCC embedded InterNiche 4.0.1. This vulnerability allows the attacker to predict a DNS query's source port in order to send forged DNS response packets that will be accepted as valid answers to the DNS client's requests without sniffing the specific request. Data is...

7.5CVSS5.8AI score
Exploits0References2
Rows per page
Query Builder