CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

NVD•added 2026/05/20 10:16 a.m.•6 views

CVE-2026-33278

NLnet Labs Unbound 1.19.1 up to and including version 1.25.0 has a vulnerability in the DNSSEC validator that enables denial of service and possible remote code execution as a result of deep copying a data structure and erroneously overwriting a destination pointer. An adversary can exploit the...

10CVSS0.00322EPSS

Exploits0References1

EUVD•added 2026/05/20 9:20 a.m.•3 views

EUVD-2026-31081

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability in the DNSSEC validator where the code path to consult the negative cache for DS records does not take into account the limit on NSEC3 hash calculations introduced in 1.19.1. This leads to degradation of service during the...

6.9CVSS5.7AI score0.00057EPSS

Exploits0References1

ATTACKERKB•added 2026/05/20 9:18 a.m.•5 views

CVE-2026-33278

10CVSS6.5AI score0.00322EPSS

Exploits0References2Affected Software1

EUVD•added 2026/05/20 9:18 a.m.•6 views

EUVD-2026-31075

10CVSS6.5AI score0.00322EPSS

Exploits0References1

Tenable Nessus•added 2024/09/06 12:0 a.m.•28 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : systemd (SUSE-SU-2024:3149-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3149-1 advisory. - CVE-2023-7008: Fixed man-in-the-middle due to unsigned name response in signed zone not refused when...

5.9CVSS6.8AI score0.00477EPSS

Exploits0References7

RedHat Linux•added 2024/03/26 12:41 p.m.•3 views

bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources

A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host. This vulnerability applies only for systems where DNSSE...

7.5CVSS6.7AI score0.1242EPSS

Exploits1References7

OSV•added 2014/09/05 12:0 a.m.•26 views

DLA-48-1 bind9 - security update

Bulletin has no description...

2.6CVSS6.1AI score0.51542EPSS

Exploits1

securityvulns•added 2014/01/14 12:0 a.m.•44 views

ISC bind DoS

Crash on parsing malformed request to NSEC3-signed zone...

2.6CVSS2AI score0.51542EPSS

Exploits1References1Affected Software1

Tenable Nessus•added 2014/01/14 12:0 a.m.•35 views

ISC BIND 9 NSEC3-Signed Zone Handling DoS

According to its self-reported version number, the remote installation of BIND is affected by a denial of service vulnerability. This issue exists due to the handling of queries for NSEC3-signed zones related to the memcpy function in the 'name.c' file on authoritative nameservers. Note that Ness...

2.6CVSS6.6AI score0.51542EPSS

Exploits1References9

OSV•added 2011/12/22 12:0 a.m.•10 views

DSA-2370-1 unbound - several

Bulletin has no description...

7.8CVSS6AI score0.02914EPSS

Exploits0

UbuntuCve•added 2011/12/20 11:55 a.m.•18 views

CVE-2011-4528

Unbound before 1.4.13p2 attempts to free unallocated memory during processing of duplicate CNAME records in a signed zone, which allows remote DNS servers to cause a denial of service daemon crash via a crafted response...

5CVSS5.9AI score0.02914EPSS

Exploits0References3

securityvulns•added 2011/05/30 12:0 a.m.•23 views

Unbound DNS server DoS

DoS against DNSSEC signed zone...

5CVSS1.4AI score0.00256EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by