Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2025/11/12 12:0 a.m.1 views

EulerOS 2.0 SP10 : unbound (EulerOS-SA-2025-2403)

According to the versions of the unbound packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet...

8.7CVSS6.5AI score0.00235EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/02/15 3:53 a.m.1 views

SUSE CVE-2020-25686

A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not check for an existing pending request for the same name and forwards a new request. By default, a maximum of 150 pending queries can be sent to upstream servers, so there can be at most 150 queries for the...

5.4CVSS6.3AI score0.00549EPSS
Exploits2References12
ATTACKERKB
ATTACKERKBadded 2022/08/15 1:15 p.m.1 views

CVE-2022-33989

dproxy-nexgen aka dproxy nexgen uses a static UDP source port selected randomly only at boot time in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not enough entropy to prevent traffic injection attacks...

5.3CVSS5.9AI score0.00297EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2022/08/15 12:15 p.m.1 views

CVE-2022-34294

totd 1.5.3 uses a fixed UDP source port in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not enough entropy to prevent traffic injection attacks...

9.8CVSS7.2AI score0.00785EPSS
Exploits1References5
CNNVD
CNNVDadded 2022/08/15 12:0 a.m.4 views

totd 安全特征问题漏洞

totd is a small DNS proxy nameserver from the individual developer F.W. Dillema. A security signature issue vulnerability exists in totd version 1.5.3, which stems from the use of a fixed UDP source port in upstream queries sent to the DNS resolver, which would allow DNS cache poisoning...

9.8CVSS8.3AI score0.00785EPSS
Exploits1References5
RedHat Linux
RedHat Linuxadded 2021/02/03 4:14 p.m.2 views

dnsmasq: multiple queries forwarded for the same name makes forging replies easier for an off-path attacker

A flaw was found in dnsmasq. When receiving a query, dnsmasq does not check for an existing pending request for the same name and forwards a new request. By default, a maximum of 150 pending queries can be sent to upstream servers, so there can be at most 150 queries for the same name. This flaw...

4.3CVSS7.2AI score0.00549EPSS
Exploits2References6
OSV
OSVadded 2021/01/20 5:15 p.m.2 views

DEBIAN-CVE-2020-25686

A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not check for an existing pending request for the same name and forwards a new request. By default, a maximum of 150 pending queries can be sent to upstream servers, so there can be at most 150 queries for the...

4.3CVSS6.5AI score0.00549EPSS
Exploits2References1
Rows per page
Query Builder