Lucene search
+L

198 matches found

RedHat Linux
RedHat Linux
added 2024/05/06 1:15 a.m.9 views

bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources

A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host. This vulnerability applies only for systems where DNSSE...

7.5CVSS6.7AI score0.81729EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2024/04/30 3:10 p.m.4 views

bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator

Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side. This vulnerability applies only for systems where DNSSEC validation is enabled...

7.5CVSS6.7AI score0.99995EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/04/30 3:10 p.m.5 views

bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources

A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host. This vulnerability applies only for systems where DNSSE...

7.5CVSS6.7AI score0.81729EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2024/04/30 10:4 a.m.6 views

systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles or the upstream DNS resolver to manipulate records...

5.9CVSS7.3AI score0.00849EPSS
Exploits0References6
Amazon
Amazon
added 2024/04/30 12:0 a.m.9 views

Important: bind

Issue Overview: Certain DNSSEC aspects of the DNS protocol in RFC 4035 and related RFCs allow remote attackers to cause a denial of service CPU consumption via one or more DNSSEC responses when there is a zone with many DNSKEY and RRSIG records, aka the "KeyTrap" issue. The protocol specification...

7.5CVSS6.9AI score0.99995EPSS
Exploits1
NVD
NVD
added 2024/04/24 6:15 p.m.10 views

CVE-2024-0151

Insufficient argument checking in Secure state Entry functions in software using Cortex-M Security Extensions CMSE, that has been compiled using toolchains that implement 'Arm v8-M Security Extensions Requirements on Development Tools' prior to version 1.4, allows an attacker to pass values to...

6.5CVSS6.5AI score0.00448EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/24 5:12 p.m.15 views

CVE-2024-0151

Insufficient argument checking in Secure state Entry functions in software using Cortex-M Security Extensions CMSE, that has been compiled using toolchains that implement 'Arm v8-M Security Extensions Requirements on Development Tools' prior to version 1.4, allows an attacker to pass values to...

6.9AI score0.00448EPSS
Exploits0References1
CVE
CVE
added 2024/04/24 5:12 p.m.76 views

CVE-2024-0151

CVE-2024-0151 affects software using Cortex-M Security Extensions (CMSE). The issue arises from insufficient argument checking in Secure state Entry functions, allowing values out of range for types smaller than 32-bits to be passed into secure state, potentially causing incorrect operations. Pub...

6.5CVSS6.7AI score0.00448EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/24 5:12 p.m.20 views

CVE-2024-0151

Insufficient argument checking in Secure state Entry functions in software using Cortex-M Security Extensions CMSE, that has been compiled using toolchains that implement 'Arm v8-M Security Extensions Requirements on Development Tools' prior to version 1.4, allows an attacker to pass values to...

6.7AI score0.00448EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/24 12:0 a.m.6 views

ARM Cortex-M Security Extensions 安全漏洞

ARM Cortex-M Security Extensions CMSE is an application from ARM UK. A security vulnerability exists in ARM Cortex-M Security Extensions prior to version 1.4, which arises from a software security issue in code using Cortex-M Security Extensions CMSE that allows an attacker to pass out-of-range...

6.5CVSS6.8AI score0.00448EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/24 12:0 a.m.13 views

PT-2024-15359 · Arm · Arm Cortex-M Security Extensions

Name of the Vulnerable Software and Affected Versions: Software using Cortex-M Security Extensions CMSE compiled using toolchains that implement 'Arm v8-M Security Extensions Requirements on Development Tools' prior to version 1.4 Description: The issue is related to insufficient argument checkin...

6.5CVSS6.8AI score0.00448EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/04/23 12:0 a.m.7 views

PT-2024-5485 · Isc +12 · Bind 9 +12

Name of the Vulnerable Software and Affected Versions: BIND 9 versions 9.11.33-S1 through 9.11.37-S1 BIND 9 versions 9.16.13 through 9.16.50 BIND 9 versions 9.16.13-S1 through 9.16.50-S1 BIND 9 versions 9.18.0 through 9.18.27 BIND 9 versions 9.18.11-S1 through 9.18.27-S1 BIND 9 versions 9.19.0...

7.8CVSS7.9AI score0.0468EPSS
Exploits0References98
RedHat Linux
RedHat Linux
added 2024/04/15 1:45 a.m.6 views

bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator

Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side. This vulnerability applies only for systems where DNSSEC validation is enabled...

7.5CVSS6.7AI score0.99995EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/04/15 1:30 a.m.7 views

bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator

Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side. This vulnerability applies only for systems where DNSSEC validation is enabled...

7.5CVSS6.7AI score0.99995EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/04/12 11:34 a.m.6 views

bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator

Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side. This vulnerability applies only for systems where DNSSEC validation is enabled...

7.5CVSS6.7AI score0.99995EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/04/12 11:34 a.m.27 views

bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources

A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host. This vulnerability applies only for systems where DNSSE...

7.5CVSS6.7AI score0.81729EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2024/04/11 5:48 p.m.5 views

bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator

Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side. This vulnerability applies only for systems where DNSSEC validation is enabled...

7.5CVSS6.7AI score0.99995EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/04/11 11:6 a.m.6 views

bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator

Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side. This vulnerability applies only for systems where DNSSEC validation is enabled...

7.5CVSS6.7AI score0.99995EPSS
Exploits0References7
OSV
OSV
added 2024/04/09 12:7 p.m.4 views

USN-6723-1 bind9 vulnerabilities

Elias Heftrig, Haya Schulmann, Niklas Vogel, and Michael Waidner discovered that Bind icorrectly handled validating DNSSEC messages. A remote attacker could possibly use this issue to cause Bind to consume resources, leading to a denial of service. CVE-2023-50387 It was discovered that Bind...

7.5CVSS6.8AI score0.99995EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2024/04/02 8:57 p.m.8 views

bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator

Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side. This vulnerability applies only for systems where DNSSEC validation is enabled...

7.5CVSS6.7AI score0.99995EPSS
Exploits0References7
Rows per page
Query Builder