Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

isc bind 9.9.13 vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv3
CVE-2023-3341
The code that processes control channel messages sent to `named` calls certain functions recursively during packet parsing. Recursion depth is only limited by the maximum accepted packet size; depending on the environment, this may cause the packet-parsing code to run out of avai...
Isc Bind 9.11.7Isc Bind 9.11.3Isc Bind 9.11.6Isc Bind 9.10.5Isc Bind 9.11.5Isc Bind 9.9.3Isc Bind 9.10.7Isc Bind 9.11.12Isc Bind 9.11.8Isc Bind 9.9.12Isc Bind 9.9.13Isc Bind 9.11.21Isc Bind 9.16.8Isc Bind 9.16.11Isc Bind 9.11.27Isc Bind 9.16.13Isc Bind 9.11.29Isc Bind 9.16.21Isc Bind 9.11.35Isc Bind 9.11.37Isc Bind 9.16.32Isc Bind 9.16.14
7.5
CVSSv3
CVE-2022-38177
By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode available memory to the point where named crashes for lack of resources.
Isc Bind 9.11.7Isc Bind 9.11.3Isc Bind 9.11.6Isc Bind 9.10.5Isc Bind 9.11.5Isc Bind 9.9.3Isc Bind 9.10.7Isc Bind 9.11.12Isc Bind 9.11.8Isc Bind 9.9.12Isc Bind 9.9.13Isc Bind 9.11.21Isc Bind 9.16.8Isc Bind 9.16.11Isc Bind 9.11.27Isc Bind 9.16.13Isc Bind 9.11.29Isc Bind 9.16.21Isc Bind 9.11.35Isc Bind 9.11.14-s1Isc Bind 9.11.19-s1Isc Bind 9.11.37
5.3
CVSSv3
CVE-2022-2795
By flooding the target resolver with queries exploiting this flaw an attacker can significantly impair the resolver's performance, effectively denying legitimate clients access to the DNS resolution service.
Isc Bind 9.11.7Isc Bind 9.11.3Isc Bind 9.11.6Isc Bind 9.10.5Isc Bind 9.11.5Isc Bind 9.9.3Isc Bind 9.10.7Isc Bind 9.11.12Isc Bind 9.11.8Isc Bind 9.9.12Isc Bind 9.9.13Isc Bind 9.11.21Isc Bind 9.16.8Isc Bind 9.16.11Isc Bind 9.11.27Isc Bind 9.16.13Isc Bind 9.11.29Isc Bind 9.16.21Isc Bind 9.11.35Isc Bind 9.11.14-s1Isc Bind 9.11.19-s1Isc Bind
5.3
CVSSv3
CVE-2021-25219
In BIND 9.3.0 -> 9.11.35, 9.12.0 -> 9.16.21, and versions 9.9.3-S1 -> 9.11.35-S1 and 9.16.8-S1 -> 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative s...
Isc Bind 9.11.7Isc Bind 9.11.3Isc Bind 9.11.6Isc Bind 9.10.5Isc Bind 9.11.5Isc Bind 9.9.3Isc Bind 9.10.7Isc Bind 9.11.12Isc Bind 9.11.8Isc Bind 9.9.12Isc Bind 9.9.13Isc Bind 9.11.21Isc Bind 9.16.8Isc Bind 9.16.11Isc Bind 9.11.27Isc Bind 9.16.13Isc Bind 9.11.29Isc Bind 9.16.21Isc BindIsc Bind 9.11.35Debian Debian Linux 9.0Debian Debian Linux 10.0
6.5
CVSSv3
CVE-2021-25214
In BIND 9.8.5 -> 9.8.8, 9.9.3 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND 9 Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.11 of the BIND 9.17 development branch, when a vulne...
Isc Bind 9.11.7Isc Bind 9.11.3Isc Bind 9.11.6Isc Bind 9.10.5Isc Bind 9.11.5Isc Bind 9.9.3Isc Bind 9.10.7Isc Bind 9.11.12Isc Bind 9.11.8Isc Bind 9.9.12Isc Bind 9.9.13Isc Bind 9.11.21Isc Bind 9.16.8Isc Bind 9.16.11Isc Bind 9.11.27Isc Bind 9.16.13Isc Bind 9.11.29Isc BindDebian Debian Linux 9.0Debian Debian Linux 10.0Fedoraproject Fedora 33Fedoraproject Fedora 34
7.5
CVSSv3
CVE-2021-25215
In BIND 9.0.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of name...
Debian Debian Linux 9.0Debian Debian Linux 10.0Isc Bind 9.11.7Isc Bind 9.11.3Isc Bind 9.11.6Isc Bind 9.10.5Isc Bind 9.11.5Isc Bind 9.9.3Isc Bind 9.10.7Isc Bind 9.11.12Isc Bind 9.11.8Isc Bind 9.9.12Isc Bind 9.9.13Isc Bind 9.11.21Isc Bind 9.16.8Isc Bind 9.16.11Isc Bind 9.11.27Isc Bind 9.16.13Isc Bind 9.11.29Isc BindFedoraproject Fedora 33Fedoraproject Fedora 34
9.8
CVSSv3
CVE-2021-25216
In BIND 9.5.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.11.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if th...
Debian Debian Linux 9.0Debian Debian Linux 10.0Isc Bind 9.11.7Isc Bind 9.11.3Isc Bind 9.11.6Isc Bind 9.10.5Isc Bind 9.11.5Isc Bind 9.9.3Isc Bind 9.10.7Isc Bind 9.11.12Isc BindIsc Bind 9.9.12Isc Bind 9.9.13Isc Bind 9.11.8Isc Bind 9.11.21Isc Bind 9.11.27Isc Bind 9.11.29Isc Bind 9.16.8Isc Bind 9.16.11Isc Bind 9.16.13Siemens Sinec Infrastructure Network ServicesNetapp Cloud Backup -
4.3
CVSSv3
CVE-2020-8624
In BIND 9.9.12 -> 9.9.13, 9.10.7 -> 9.10.8, 9.11.3 -> 9.11.21, 9.12.1 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.9.12-S1 -> 9.9.13-S1, 9.11.3-S1 -> 9.11.21-S1 of the BIND 9 Supported Preview Edition, An attacker who has been granted privileges to change a sp...
Isc BindIsc Bind 9.11.3Isc Bind 9.9.12Isc Bind 9.9.13Isc Bind 9.11.21Debian Debian Linux 10.0Canonical Ubuntu Linux 18.04Netapp Steelstore Cloud Integrated Storage -Fedoraproject Fedora 31Fedoraproject Fedora 32Canonical Ubuntu Linux 20.04Canonical Ubuntu Linux 16.04Opensuse Leap 15.1Opensuse Leap 15.2
7.5
CVSSv3
CVE-2020-8620
In BIND 9.15.6 -> 9.16.5, 9.17.0 -> 9.17.3, An attacker who can establish a TCP connection with the server and send data on that connection can exploit this to trigger the assertion failure, causing the server to exit.
Isc BindIsc Bind 9.11.3Isc Bind 9.9.12Isc Bind 9.9.13Isc Bind 9.11.21Opensuse Leap 15.1Opensuse Leap 15.2Netapp Steelstore Cloud Integrated Storage -Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 16.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook