Lucene search
+L

21 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-42390

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation. CVE-2026-42390 Note...

5.3CVSS6.1AI score0.00213EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-33612

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to cache poisoning. CVE-2026-33612 Note that Nessus relies on t...

7.5CVSS6.1AI score0.00119EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-42387

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to a crash of the Recursor due to insuffcient input validation...

5.9CVSS6.1AI score0.004EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/25 1:1 p.m.8 views

EUVD-2026-39359

An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation...

5.3CVSS5.8AI score0.00213EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/25 1:1 p.m.7 views

CVE-2026-42390

An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation...

5.3CVSS5.8AI score0.00213EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/25 1:1 p.m.15 views

CVE-2026-42390

The CVE describes a bypass where an invalid zone can pass ZONEMD validation when ZoneToCache is configured to perform ZONEMD validation. Affected component is ZONEMD validation logic within ZoneToCache; root cause is bypass of validation checks. Impact is limited to validation integrity (C: NONE,...

5.3CVSS5.8AI score0.00213EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/25 1:1 p.m.7 views

CVE-2026-42390

An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation...

5.3CVSS5.8AI score0.00213EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/25 1:1 p.m.36 views

CVE-2026-42390 ZONEMD validation can be bypassed

An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation...

5.3CVSS0.00213EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/25 1:1 p.m.9 views

CVE-2026-42390

An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation...

5.3CVSS5.8AI score0.00213EPSS
Exploits0
EUVD
EUVD
added 2026/06/25 12:59 p.m.7 views

EUVD-2026-39357

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to a crash of the Recursor due to insuffcient input validation...

5.9CVSS5.8AI score0.004EPSS
Exploits0References1
CVE
CVE
added 2026/06/25 12:59 p.m.17 views

CVE-2026-42387

PowerDNS Recursor is affected by CVE-2026-42387 due to insufficient input validation in the ZoneToCache function. A malicious authoritative server can send a crafted zone via ZoneToCache, causing the Recursor to crash and impacting availability. Root cause identified as insufficient input validat...

5.9CVSS5.8AI score0.004EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/25 12:59 p.m.10 views

CVE-2026-42387

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to a crash of the Recursor due to insuffcient input validation...

5.9CVSS5.7AI score0.004EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/25 12:59 p.m.7 views

CVE-2026-42387

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to a crash of the Recursor due to insuffcient input validation...

5.9CVSS5.8AI score0.004EPSS
Exploits0
OSV
OSV
added 2026/06/25 12:59 p.m.3 views

CVE-2026-42387 Insufficient input validation in ZoneToCache

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to a crash of the Recursor due to insuffcient input validation...

5.9CVSS5.9AI score0.004EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/25 12:58 p.m.36 views

CVE-2026-33612 ZoneToCache can poison the cache

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to cache poisoning...

7.5CVSS0.00119EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/25 12:58 p.m.10 views

CVE-2026-33612

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to cache poisoning...

7.5CVSS5.7AI score0.00119EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/04/23 1:24 a.m.9 views

SUSE CVE-2026-33601

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.8AI score0.00512EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/22 12:30 p.m.6 views

EUVD-2026-24733

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.8AI score0.00512EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/22 9:37 a.m.9 views

CVE-2026-33601

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.8AI score0.00512EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/04/22 9:37 a.m.30 views

CVE-2026-33601 Insufficient validation of zonemd record

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS0.00512EPSS
Exploits0References1
Rows per page
Query Builder