Lucene search
K

107 matches found

OSV
OSV
added 2023/12/23 1:15 p.m.7 views

UBUNTU-CVE-2023-7008

A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles or the upstream DNS resolver to manipulate records...

5.9CVSS6.8AI score0.00849EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/12/23 1:0 p.m.23 views

CVE-2023-7008 Systemd-resolved: unsigned name response in signed zone is not refused when dnssec=yes

A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles or the upstream DNS resolver to manipulate records...

5.9CVSS5.9AI score0.00849EPSS
Exploits0References6
CVE
CVE
added 2023/12/23 1:0 p.m.295 views

CVE-2023-7008

CVE-2023-7008 affects systemd-resolved in systemd by allowing DNSSEC-signed domains to be accepted even when unsigned, enabling record manipulation by an attacker via MITM or upstream resolver. Connected advisories confirm a fix is available in patched systemd packages (e.g., Debian 247.3-7+deb11...

5.9CVSS6.1AI score0.00849EPSS
Exploits0References10Affected Software1
CNNVD
CNNVD
added 2023/12/23 12:0 a.m.5 views

systemd security vulnerability

systemd is a Linux-based system and service manager from the individual developer Lennart Poettering in Germany. The product is compatible with SysV and LSB startup scripts and provides a framework for representing dependencies between system services. A security vulnerability exists in systemd...

5.9CVSS9AI score0.00849EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/12/22 2:19 a.m.7 views

SUSE CVE-2023-7008

A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles or the upstream DNS resolver to manipulate records...

5.9CVSS7AI score0.00849EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/12/20 4:0 p.m.50 views

CVE-2023-7008

A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles or the upstream DNS resolver to manipulate records. Mitigation Mitigation for this issue is either not...

5.9CVSS7AI score0.00849EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/10/31 2:33 a.m.4 views

SUSE CVE-2019-15718

In systemd 240, busopensystemwatchbindwithdescription in shared/bus-util.c as used by systemd-resolved to connect to the system D-Bus instance, calls sdbussettrusted, which disables access controls for incoming D-Bus messages. An unprivileged user can exploit this by executing D-Bus methods that...

4.4CVSS8.3AI score0.00511EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:45 a.m.2 views

SUSE CVE-2017-9217

systemd-resolved through 233 allows remote attackers to cause a denial of service daemon crash via a crafted DNS response with an empty question section...

4CVSS7.3AI score0.15422EPSS
Exploits0References22
SUSE CVE
SUSE CVE
added 2023/02/15 4:44 a.m.3 views

SUSE CVE-2017-9445

In systemd through 233, certain sizes passed to dnspacketnew in systemd-resolved can cause it to allocate a buffer that's too small. A malicious DNS server can exploit this via a response with a specially crafted TCP payload to trick systemd-resolved into allocating a buffer that's too small, and...

8.8CVSS7.2AI score0.55116EPSS
Exploits1References23
SUSE CVE
SUSE CVE
added 2023/02/15 4:37 a.m.3 views

SUSE CVE-2017-15908

In systemd 223 through 235, a remote DNS server can respond with a custom crafted DNS NSEC resource record to trigger an infinite loop in the dnspacketreadtypewindow function of the 'systemd-resolved' service and cause a DoS of the affected service...

5.5CVSS7AI score0.23633EPSS
Exploits0References20
Positive Technologies
Positive Technologies
added 2022/12/08 12:0 a.m.9 views

PT-2023-8454

Name of the Vulnerable Software and Affected Versions systemd-resolved affected versions not specified Description The issue is related to insufficient authentication checks of messages from DNS clients in the systemd-resolved service, which manages network connections and domain name resolutions...

7.8CVSS6.6AI score0.01051EPSS
Exploits4References65
RedHat Linux
RedHat Linux
added 2022/09/19 11:53 a.m.75 views

Important: Red Hat Security Advisory: Red Hat Virtualization security update

An update for redhat-release-virtualization-host, redhat-virtualization-host, and redhat-virtualization-host-productimg is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

9.8CVSS7.1AI score0.06214EPSS
Exploits15References9
Tenable Nessus
Tenable Nessus
added 2022/09/02 12:0 a.m.29 views

Rocky Linux 8 : systemd (RLSA-2022:6206)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:6206 advisory. - systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c CVE-2022-2526 Note that Nessus has not tested for this issue but has...

9.8CVSS7.5AI score0.01052EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/09/02 12:0 a.m.20 views

CentOS: Security Advisory for libgudev1-219-78.el7_ (CESA-2022:6160)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.7AI score0.01052EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/08/29 5:23 p.m.9 views

systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

A use-after-free vulnerability was found in systemd. This issue occurs due to the onstreamio function and dnsstreamcomplete function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other functions and callbacks called can dereference the...

9.8CVSS7.1AI score0.01052EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/08/25 12:0 a.m.122 views

Oracle Linux 7 : systemd (ELSA-2022-6160)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-6160 advisory. 219-78.0.9.el79.7 - Core: explicitly trigger changing udev systemdwants property Orabug: 31858125 - Disable unprivileged BPF by default Orabug: 32871008 - Resol...

9.8CVSS7.5AI score0.01052EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/08/24 6:2 p.m.8 views

systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

A use-after-free vulnerability was found in systemd. This issue occurs due to the onstreamio function and dnsstreamcomplete function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other functions and callbacks called can dereference the...

9.8CVSS7.1AI score0.01052EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/08/24 5:54 p.m.9 views

systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

A use-after-free vulnerability was found in systemd. This issue occurs due to the onstreamio function and dnsstreamcomplete function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other functions and callbacks called can dereference the...

9.8CVSS7.1AI score0.01052EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/08/24 5:5 p.m.5 views

systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

A use-after-free vulnerability was found in systemd. This issue occurs due to the onstreamio function and dnsstreamcomplete function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other functions and callbacks called can dereference the...

9.8CVSS7.1AI score0.01052EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/08/24 4:47 p.m.8 views

systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

A use-after-free vulnerability was found in systemd. This issue occurs due to the onstreamio function and dnsstreamcomplete function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other functions and callbacks called can dereference the...

9.8CVSS7.1AI score0.01052EPSS
Exploits0References4
Rows per page
Query Builder