Lucene search
+L

198 matches found

OSV
OSV
added 2025/08/26 5:52 p.m.8 views

CLSA-2025-1756230743 unbound: Fix of CVE-2023-50868

CVE-2023-50868: avoid availabiluty of the remote attackers to cause a denial of service using DNSSEC...

7.5CVSS7AI score0.81729EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-7883

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When using Arm Cortex-M Security Extensions CMSE, Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secu...

3.7CVSS6AI score0.00478EPSS
Exploits1References4
Microsoft CVE
Microsoft CVE
added 2025/07/11 7:0 a.m.10 views

Systemd-resolved: unsigned name response in signed zone is not refused when dnssec=yes

...

5.9CVSS7AI score0.00849EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/24 12:0 a.m.11 views

Quantum-Resistant Domain Name System: a Comprehensive System-Level Study

The Domain Name System DNS plays a foundational role in Internet infrastructure, yet its core protocols remain vulnerable to compromise by quantum adversaries. As cryptographically relevant quantum computers become a realistic threat, ensuring DNS confidentiality, authenticity, and integrity in t...

6.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 9:43 a.m.10 views

CVE-2024-21724

Inadequate input validation for media selection fields lead to XSS vulnerabilities in various extensions...

6.1CVSS6.2AI score0.00513EPSS
Exploits0References1
OSV
OSV
added 2025/04/21 8:59 p.m.12 views

CLSA-2025-1745269163 dnsmasq: Fix of 2 CVEs

CVE-2023-50387: DNSSEC aspects of the DNS protocol allow remote attackers to cause a DDOS - CVE-2023-50868: The Closest Encloser Proof aspect of the DNS protocol allows remote attackers to cause a DDOS...

7.5CVSS7AI score0.99995EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2025/04/01 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for llvm (EulerOS-SA-2025-1319)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS4.2AI score0.00478EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/04/01 12:0 a.m.9 views

Huawei EulerOS: Security Advisory for llvm (EulerOS-SA-2025-1336)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS4.2AI score0.00478EPSS
Exploits1References2
OSV
OSV
added 2025/02/10 6:15 p.m.8 views

UBUNTU-CVE-2025-25188

Hickory DNS is a Rust based DNS client, server, and resolver. A vulnerability present starting in version 0.8.0 and prior to versions 0.24.3 and 0.25.0-alpha.5 impacts Hickory DNS users relying on DNSSEC verification in the client library, stub resolver, or recursive resolver. The DNSSEC validati...

7.1CVSS5.8AI score0.00271EPSS
Exploits0References3
RustSec
RustSec
added 2025/02/07 12:0 p.m.13 views

Hickory DNS failure to verify self-signed RRSIG for DNSKEYs

Summary The DNSSEC validation routines treat entire RRsets of DNSKEY records as trusted once they have established trust in only one of the DNSKEYs. As a result, if a zone includes a DNSKEY with a public key that matches a configured trust anchor, all keys in that zone will be trusted to...

7.3AI score
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2025/01/06 1:36 p.m.5 views

bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources

A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host. This vulnerability applies only for systems where DNSSE...

7.5CVSS6.7AI score0.81729EPSS
Exploits1References7
OSV
OSV
added 2024/12/18 2:27 p.m.11 views

CLSA-2024-1734532058 unbound: Fix of 2 CVEs

CVE-2023-50387: Evaluate DNSSEC responses to prevent KeyTrap denial of service issue. - CVE-2023-50868: Fix Closest Encloser Proof aspect to prevent CPU consumption for SHA-1 computations in random subdomain attacks...

7.5CVSS7.1AI score0.99995EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2024/12/12 2:15 p.m.14 views

bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources

A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host. This vulnerability applies only for systems where DNSSE...

7.5CVSS6.7AI score0.81729EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2024/11/06 4:10 a.m.6 views

SUSE CVE-2024-7883

When using Arm Cortex-M Security Extensions CMSE, Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secure function call is made that returns a floating-point value and when this is the first use of floating-point since entering Secure state...

3.7CVSS7AI score0.00478EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2024/10/31 8:0 p.m.16 views

CVE-2024-7883

When using Arm Cortex-M Security Extensions CMSE, Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secure function call is made that returns a floating-point value and when this is the first use of floating-point since entering Secure state...

3.7CVSS6.8AI score0.00478EPSS
Exploits1References4
OSV
OSV
added 2024/10/31 5:15 p.m.19 views

CVE-2024-7883

When using Arm Cortex-M Security Extensions CMSE, Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secure function call is made that returns a floating-point value and when this is the first use of floating-point since entering Secure state...

3.7CVSS6.7AI score
Exploits0References1
NVD
NVD
added 2024/10/31 5:15 p.m.18 views

CVE-2024-7883

When using Arm Cortex-M Security Extensions CMSE, Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secure function call is made that returns a floating-point value and when this is the first use of floating-point since entering Secure state...

3.7CVSS0.00478EPSS
Exploits1References1
OSV
OSV
added 2024/10/31 5:15 p.m.4 views

UBUNTU-CVE-2024-7883

When using Arm Cortex-M Security Extensions CMSE, Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secure function call is made that returns a floating-point value and when this is the first use of floating-point since entering Secure state...

3.7CVSS5.8AI score0.00478EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2024/10/31 5:1 p.m.25 views

CVE-2024-7883

When using Arm Cortex-M Security Extensions CMSE, Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secure function call is made that returns a floating-point value and when this is the first use of floating-point since entering Secure state...

3.7CVSS4.9AI score0.00478EPSS
Exploits1
Cvelist
Cvelist
added 2024/10/31 5:1 p.m.43 views

CVE-2024-7883 CMSE secure state may leak from stack to floating-point registers

When using Arm Cortex-M Security Extensions CMSE, Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secure function call is made that returns a floating-point value and when this is the first use of floating-point since entering Secure state...

3.7CVSS0.00478EPSS
Exploits1References1
Rows per page
Query Builder