Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

isc bind 9.12.4 vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv3
CVE-2019-6477
With pipelining enabled each incoming query on a TCP connection requires a similar resource allocation to a query received via UDP or via TCP without pipelining enabled. A client using a TCP-pipelined connection to a server could consume more resources than the server has been pr...
Isc Bind 9.12.4Isc BindIsc Bind 9.11.6Isc Bind 9.11.5Isc Bind 9.11.12Fedoraproject Fedora 30Fedoraproject Fedora 31
8.6
CVSSv3
CVE-2020-8616
A malicious actor who intentionally exploits this lack of effective limitation on the number of fetches performed when processing referrals can, through the use of specially crafted referrals, cause a recursing server to issue a very large number of fetches in an attempt to proce...
Isc BindIsc Bind 9.12.4Isc Bind 9.11.7Isc Bind 9.11.3Isc Bind 9.11.6Isc Bind 9.10.5Isc Bind 9.11.5Isc Bind 9.9.3Isc Bind 9.10.7Isc Bind 9.11.8Debian Debian Linux 9.0Debian Debian Linux 10.0
5.9
CVSSv3
CVE-2020-8617
Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whos...
Isc BindIsc Bind 9.12.4Isc Bind 9.11.7Isc Bind 9.11.3Isc Bind 9.11.6Isc Bind 9.10.5Isc Bind 9.11.5Isc Bind 9.9.3Isc Bind 9.10.7Isc Bind 9.11.8Debian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0Fedoraproject Fedora 31Fedoraproject Fedora 32Opensuse Leap 15.1Opensuse Leap 15.2Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 19.10Canonical Ubuntu Linux 20.04Canonical Ubuntu Linux 16.04
7.5
CVSSv3
CVE-2019-6467
A programming error in the nxdomain-redirect feature can cause an assertion failure in query.c if the alternate namespace used by nxdomain-redirect is a descendant of a zone that is served locally. The most likely scenario where this might occur is if the server, in addition to p...
Isc BindIsc Bind 9.14.0
7.5
CVSSv3
CVE-2018-5743
By design, BIND is intended to limit the number of TCP clients that can be connected at any given time. The number of allowed connections is a tunable parameter which, if unset, defaults to a conservative value for most servers. Unfortunately, the code which was intended to limit...
F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 15.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 15.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 15.0.0F5 Big-ip AnalyticsF5 Big-ip Analytics 15.0.0F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 15.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 15.0.0F5 Big-ip Edge GatewayF5 Big-ip Edge Gateway 15.0.0F5 Big-ip Fraud Protection ServiceF5 Big-ip Fraud Protection Service 15.0.0F5 Big-ip Global Traffic ManagerF5 Big-ip Global Traffic Manager 15.0.0F5 Big-ip Link ControllerF5 Big-ip Link Controller 15.0.0F5 Big-ip WebacceleratorF5 Big-ip Webaccelerator 15.0.0
5.9
CVSSv3
CVE-2019-6471
A race condition which may occur when discarding malformed packets can result in BIND exiting due to a REQUIRE assertion failure in dispatch.c. Versions affected: BIND 9.11.0 -> 9.11.7, 9.12.0 -> 9.12.4-P1, 9.14.0 -> 9.14.2. Also all releases of the BIND 9.13 development...
F5 Big-ip Local Traffic Manager 14.0.0F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 15.0.0F5 Big-ip Local Traffic Manager 14.1.0F5 Big-ip Application Acceleration Manager 14.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 15.0.0F5 Big-ip Application Acceleration Manager 14.1.0F5 Big-ip Advanced Firewall Manager 14.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 15.0.0F5 Big-ip Advanced Firewall Manager 14.1.0F5 Big-ip Analytics 14.0.0F5 Big-ip AnalyticsF5 Big-ip Analytics 15.0.0F5 Big-ip Analytics 14.1.0F5 Big-ip Access Policy Manager 14.0.0F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 15.0.0F5 Big-ip Access Policy Manager 14.1.0F5 Big-ip Application Security Manager 14.0.0F5 Big-ip Application Security Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook