Lucene search
K

21 matches found

NVD
NVD
added 2026/06/25 2:16 p.m.7 views

CVE-2026-42387

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to a crash of the Recursor due to insuffcient input validation...

5.9CVSS0.004EPSS
Exploits0References1
NVD
NVD
added 2026/06/25 2:16 p.m.7 views

CVE-2026-42390

An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation...

5.3CVSS0.00213EPSS
Exploits0References1
NVD
NVD
added 2026/06/25 1:16 p.m.14 views

CVE-2026-33612

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to cache poisoning...

7.5CVSS0.00119EPSS
Exploits0References1
OSV
OSV
added 2026/06/25 1:1 p.m.1 views

CVE-2026-42390 ZONEMD validation can be bypassed

An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation...

5.3CVSS5.9AI score0.00213EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/25 12:59 p.m.31 views

CVE-2026-42387 Insufficient input validation in ZoneToCache

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to a crash of the Recursor due to insuffcient input validation...

5.9CVSS0.004EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/25 12:58 p.m.6 views

EUVD-2026-39352

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to cache poisoning...

7.5CVSS5.8AI score0.00119EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/25 12:58 p.m.4 views

CVE-2026-33612

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to cache poisoning...

7.5CVSS5.8AI score0.00119EPSS
Exploits0
CVE
CVE
added 2026/06/25 12:58 p.m.15 views

CVE-2026-33612

CVE-2026-33612 describes a cache-poisoning vulnerability in a ZoneToCache flow: a malicious authoritative server can craft a zone that is cached, compromising integrity of cached data. The CVSS3.1 metrics indicate Network access, high attack complexity, no privileges required, no user interaction...

7.5CVSS5.8AI score0.00119EPSS
Exploits0References1
OSV
OSV
added 2026/06/25 12:58 p.m.1 views

CVE-2026-33612 ZoneToCache can poison the cache

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to cache poisoning...

7.5CVSS5.9AI score0.00119EPSS
Exploits0References5
NVD
NVD
added 2026/04/22 10:16 a.m.6 views

CVE-2026-33601

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.9CVSS0.00512EPSS
Exploits0References1
OSV
OSV
added 2026/04/22 10:16 a.m.6 views

DEBIAN-CVE-2026-33601

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.9CVSS5.3AI score0.00512EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/04/22 10:16 a.m.5 views

CVE-2026-33601

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.9CVSS5.8AI score0.00512EPSS
Exploits0References2
OSV
OSV
added 2026/04/22 10:16 a.m.7 views

UBUNTU-CVE-2026-33601

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.9CVSS5.8AI score0.00523EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/22 9:37 a.m.9 views

CVE-2026-33601

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.8AI score0.00512EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/22 9:37 a.m.22 views

CVE-2026-33601 Insufficient validation of zonemd record

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.8AI score0.00512EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/04/22 9:37 a.m.6 views

CVE-2026-33601

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.9CVSS5.2AI score0.00512EPSS
Exploits0
CVE
CVE
added 2026/04/22 9:37 a.m.29 views

CVE-2026-33601

The CVE-2026-33601 issue affects the zoneToCache function when fed by a malicious authoritative server. The underlying fault is a missing consistency check that can allow a crafted zone to trigger a null pointer dereference, resulting in a denial of service. Reported CVSSv3.1 metrics indicate net...

4.9CVSS5.8AI score0.00512EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/04/22 9:37 a.m.1 views

CVE-2026-33601 Insufficient validation of zonemd record

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.9AI score0.00512EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2026/04/22 9:37 a.m.10 views

CVE-2026-33601

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.9CVSS5.2AI score0.00512EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.7 views

PT-2026-34327

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.8AI score0.00512EPSS
Exploits0References2
Rows per page
Query Builder