Lucene search
+L

1975 matches found

osv
osv
added 2026/05/28 12:30 a.m.5 views

GHSA-7PF3-8XX7-RVHF MCP Toolbox for Databases vulnerable to DNS rebinding attacks

Vulnerable to DNS rebinding attacks when using SSE http://b/499408790. During the beta phase, we implemented allowed-origins and allowed-hosts flags to align with MCP security guidelines. However, the hardcoded Access-Control-Allow-Origin: header in the SSE initialization handler was inadvertentl...

9.4CVSS5.8AI score0.00279EPSS
Exploits0References5
nvd
nvd
added 2026/05/27 11:16 p.m.23 views

CVE-2026-9739

Vulnerable to DNS rebinding attacks when using SSE http://b/499408790. During the beta phase, we implemented allowed-origins and allowed-hosts flags to align with MCP security guidelines. However, the hardcoded Access-Control-Allow-Origin: header in the SSE initialization handler was inadvertentl...

9.4CVSS0.00279EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/27 9:38 p.m.11 views

CVE-2026-9739

Vulnerable to DNS rebinding attacks when using SSE http://b/499408790. During the beta phase, we implemented allowed-origins and allowed-hosts flags to align with MCP security guidelines. However, the hardcoded Access-Control-Allow-Origin: header in the SSE initialization handler was inadvertentl...

9.4CVSS5.8AI score0.00279EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2026/05/27 9:38 p.m.10 views

CVE-2026-9739

Vulnerable to DNS rebinding attacks when using SSE http://b/499408790. During the beta phase, we implemented allowed-origins and allowed-hosts flags to align with MCP security guidelines. However, the hardcoded Access-Control-Allow-Origin: header in the SSE initialization handler was inadvertentl...

9.4CVSS5.8AI score0.00279EPSS
Exploits0References2
cve
cve
added 2026/05/27 9:38 p.m.40 views

CVE-2026-9739

CVE-2026-9739 describes a DNS rebinding vulnerability due to a hardcoded Access-Control-Allow-Origin: * in the SSE initialization handler, despite earlier attempts to align with MCP security guidelines using allowed-origins and allowed-hosts. The issue specifically affects users connecting via To...

9.4CVSS5.8AI score0.00279EPSS
Exploits0References2
cvelist
cvelist
added 2026/05/27 9:38 p.m.37 views

CVE-2026-9739

Vulnerable to DNS rebinding attacks when using SSE http://b/499408790. During the beta phase, we implemented allowed-origins and allowed-hosts flags to align with MCP security guidelines. However, the hardcoded Access-Control-Allow-Origin: header in the SSE initialization handler was inadvertentl...

9.4CVSS0.00279EPSS
Exploits0References2
susecve
susecve
added 2026/05/27 5:36 a.m.9 views

SUSE CVE-2021-22884

Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to DNS rebinding attacks as the whitelist includes “localhost6”. When “localhost6” is not present in /etc/hosts, it is just an ordinary domain that is resolved via DNS, i.e., over network. If the attacker controls the victim's DN...

5.8CVSS6.9AI score0.32362EPSS
Exploits1References17
ptsecurity
ptsecurity
added 2026/05/27 12:0 a.m.18 views

PT-2026-44123

Name of the Vulnerable Software and Affected Versions Toolbox affected versions not specified Description The software is susceptible to DNS rebinding attacks when using Server-Sent Events SSE under specification v2024-11-05. This occurs because the SSE initialization handler retains a hardcoded...

9.4CVSS5.8AI score0.00279EPSS
Exploits0References13
vulnrichment
vulnrichment
added 2026/05/26 8:22 p.m.10 views

CVE-2026-42336 MaxKB: SSRF Bypass via DNS Rebinding in MaxKB OSS URL Fetch

MaxKB is an open-source AI assistant for enterprise. MaxKB 2.8.0 and prior are vulnerable to a server-side request forgery SSRF bypass in the OSS file service URL fetch functionality due to inconsistent DNS resolution between validation and actual request execution, allowing attackers to access...

5.1CVSS5.8AI score0.00187EPSS
Exploits0References1
cvelist
cvelist
added 2026/05/26 8:22 p.m.36 views

CVE-2026-42336 MaxKB: SSRF Bypass via DNS Rebinding in MaxKB OSS URL Fetch

MaxKB is an open-source AI assistant for enterprise. MaxKB 2.8.0 and prior are vulnerable to a server-side request forgery SSRF bypass in the OSS file service URL fetch functionality due to inconsistent DNS resolution between validation and actual request execution, allowing attackers to access...

5.1CVSS0.00187EPSS
Exploits0References1
osv
osv
added 2026/05/26 8:22 p.m.3 views

CVE-2026-42336 MaxKB: SSRF Bypass via DNS Rebinding in MaxKB OSS URL Fetch

MaxKB is an open-source AI assistant for enterprise. MaxKB 2.8.0 and prior are vulnerable to a server-side request forgery SSRF bypass in the OSS file service URL fetch functionality due to inconsistent DNS resolution between validation and actual request execution, allowing attackers to access...

5.1CVSS6AI score0.00187EPSS
Exploits0References3
cve
cve
added 2026/05/26 8:22 p.m.38 views

CVE-2026-42336

CVE-2026-42336 concerns MaxKB: OSS file service URL fetch in MaxKB 2.8.0 and earlier is vulnerable to an SSRF bypass caused by inconsistent DNS resolution between validation and the actual request, enabling access to internal networks via DNS rebinding. The issue is mitigated by upgrading to 2.8....

5.1CVSS5.8AI score0.00187EPSS
Exploits0References1
nessus
nessus
added 2026/05/22 12:0 a.m.9 views

Unity Linux 20.1060e / 20.1070e Security Update: gupnp (UTSA-2026-016639)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016639 advisory. An issue was discovered in GUPnP before 1.0.7 and 1.1.x and 1.2.x before 1.2.5. It allows DNS rebinding. A remote web server can exploit this vulnerability to trick ...

8.1CVSS7.2AI score0.01084EPSS
Exploits0References4
osv
osv
added 2026/05/20 7:7 p.m.13 views

GO-2026-4990 Gotenberg's DNS rebinding bypasses SSRF validation on Chromium URL conversion routes in github.com/gotenberg/gotenberg

Gotenberg's DNS rebinding bypasses SSRF validation on Chromium URL conversion routes in github.com/gotenberg/gotenberg...

5.3CVSS5.8AI score0.00186EPSS
Exploits1References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Node.js

A OS command injection vulnerability exists in Node.js versions 14.20.0, 16.20.0, 18.5.0 due to an insufficient IsAllowedHost check. This vulnerability can be easily exploited, as the IsIPAddress function does not properly check whether an IP address is invalid before making DBS requests, thereby...

8.1CVSS6.7AI score0.05913EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Firefox

Thunderbird cached CORS preflight responses across IP address changes. This allowed circumventing CORS using DNS rebinding. This vulnerability was fixed in Firefox 141, Firefox ESR 140.1, Thunderbird 141, and Thunderbird 140.1...

8.1CVSS7.7AI score0.00417EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/xe: always keep track of remap prev/next During 3D workloads, users are reporting encountering the following issues: 413.361679 WARNING: drivers/gpu/drm/xe/xevm.c:1217 at vmBindIoctlOpsUnwind+0x1e2/0x2e0 xe, CPU7:...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References1
astralinux
astralinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in GUPNP

A vulnerability was discovered in GUPnP before versions 1.0.7, 1.1.x, and 1.2.x, as well as before version 1.2.5. This vulnerability allows for DNS rebinding. A remote web server can exploit this vulnerability to trick the victim’s browser into performing actions against local UPnP services...

8.1CVSS7.7AI score0.01084EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in Node.js

There is an OS command injection vulnerability in Node.js versions 14.21.1, 16.18.1, 18.12.1, 19.0.1, due to an insufficient IsAllowedHost check. This vulnerability can be easily bypassed because the IsIPAddress function does not properly check whether an IP address is invalid before making DBS...

8.1CVSS6.7AI score0.14024EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in etcd

A DNS rebinding vulnerability has been discovered in etcd 3.3.1 and earlier versions. An attacker can manipulate their DNS records to direct requests to localhost, thereby tricking the browser into sending requests to localhost or any other address...

5.5CVSS6.3AI score0.00512EPSS
Exploits1References1
Rows per page
Query Builder