Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
authoritative vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-15120
An issue has been found in the parsing of authoritative answers in PowerDNS Recursor prior to 4.0.8, leading to a NULL pointer dereference when parsing a specially crafted answer containing a CNAME of a different class than IN. An unauthenticated remote attacker could cause a den...
Powerdns Recursor
Debian Debian Linux 8.0
Debian Debian Linux 9.0
1 Github repository
NA
CVE-2012-2978
query.c in NSD 3.0.x up to and including 3.0.8, 3.1.x up to and including 3.1.1, and 3.2.x prior to 3.2.12 allows remote malicious users to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet.
Nlnetlabs Nsd 3.0.2
Nlnetlabs Nsd 3.0.1
Nlnetlabs Nsd 3.0.0
Nlnetlabs Nsd 3.0.8
Nlnetlabs Nsd 3.0.7
Nlnetlabs Nsd 3.0.4
Nlnetlabs Nsd 3.0.3
Nlnetlabs Nsd 3.0.6
Nlnetlabs Nsd 3.0.5
Nlnetlabs Nsd 3.1.1
Nlnetlabs Nsd 3.1.0
Nlnetlabs Nsd 3.2.5
Nlnetlabs Nsd 3.2.6
Nlnetlabs Nsd 3.2.3
Nlnetlabs Nsd 3.2.4
Nlnetlabs Nsd 3.2.7
Nlnetlabs Nsd 3.2.8
Nlnetlabs Nsd 3.2.9
Nlnetlabs Nsd 3.2.1
Nlnetlabs Nsd 3.2.0
Nlnetlabs Nsd 3.2.10
6.5
CVSSv3
CVE-2020-10955
GitLab EE/CE 11.1 up to and including 12.9 is vulnerable to parameter tampering on an upload feature that allows an unauthorized user to read content available under specific folders.
Gitlab Gitlab
Debian Debian Linux 10.0
7.5
CVSSv3
CVE-2022-24798
Internet Routing Registry daemon version 4 is an IRR database server, processing IRR objects in the RPSL format. IRRd did not always filter password hashes in query responses relating to `mntner` objects and database exports. This may have allowed adversaries to retrieve some of ...
Internet Routing Registry Daemon Project Internet Routing Registry Daemon
5.9
CVSSv3
CVE-2017-3140
If named is configured to use Response Policy Zones (RPZ) an error processing some rule types can lead to a condition where BIND will endlessly loop while handling a query. Affects BIND 9.9.10, 9.10.5, 9.11.0->9.11.1, 9.9.10-S1, 9.10.5-S1.
Isc Bind 9.9.10
Isc Bind 9.10.5
Isc Bind
Netapp Oncommand Balance -
Netapp Element Software -
Netapp Data Ontap Edge -
NA
CVE-2009-1755
Off-by-one error in the packet_read_query_section function in packet.c in nsd 3.2.1, and process_query_section in query.c in nsd 2.3.7, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a bu...
Nlnetlabs Nsd 2.0.1
Nlnetlabs Nsd 2.1.0
Nlnetlabs Nsd 2.1.2
Nlnetlabs Nsd 3.2.1
Nlnetlabs Nsd 2.3.7
Nlnetlabs Nsd 2.0.0
Nlnetlabs Nsd 2.1.3
Nlnetlabs Nsd 2.1.4
Nlnetlabs Nsd 2.1.5
Nlnetlabs Nsd 2.0.2
Nlnetlabs Nsd 2.1.1
NA
CVE-2011-4869
validator/val_nsec3.c in Unbound prior to 1.4.13p2 does not properly perform proof processing for NSEC3-signed zones, which allows remote DNS servers to cause a denial of service (daemon crash) via a malformed response that lacks expected NSEC3 records, a different vulnerability ...
Unbound Unbound 1.4.11
Unbound Unbound 1.4.3
Unbound Unbound 1.4.2
Unbound Unbound 1.3.1
Unbound Unbound 1.3.0
Unbound Unbound 1.0.0
Unbound Unbound 0.11
Unbound Unbound 0.10
Unbound Unbound 0.5
Unbound Unbound 0.4
Unbound Unbound 1.4.10
Unbound Unbound 1.4.9
Unbound Unbound 1.4.8
Unbound Unbound 1.4.1
Unbound Unbound 1.4.0
Unbound Unbound 1.2.1
Unbound Unbound 1.2.0
Unbound Unbound 0.09
Unbound Unbound 0.8
Unbound Unbound 0.3
Unbound Unbound 0.2
Unbound Unbound 1.4.7
7.5
CVSSv3
CVE-2023-4408
The DNS message parsing code in `named` includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected `named` instance by exploiting this flaw. T...
NA
CVE-2011-4528
Unbound prior to 1.4.13p2 attempts to free unallocated memory during processing of duplicate CNAME records in a signed zone, which allows remote DNS servers to cause a denial of service (daemon crash) via a crafted response.
Unbound Unbound 1.4.6
Unbound Unbound 1.4.5
Unbound Unbound 1.3.3
Unbound Unbound 1.3.2
Unbound Unbound 1.0.2
Unbound Unbound 1.0.1
Unbound Unbound 1.0.0
Unbound Unbound 0.7
Unbound Unbound 0.6
Unbound Unbound 1.4.12
Unbound Unbound
Unbound Unbound 1.4.10
Unbound Unbound 1.4.9
Unbound Unbound 1.4.2
Unbound Unbound 1.4.1
Unbound Unbound 1.2.1
Unbound Unbound 1.2.0
Unbound Unbound 0.09
Unbound Unbound 0.8
Unbound Unbound 0.3
Unbound Unbound 0.2
Unbound Unbound 1.4.8
NA
CVE-2021-47072
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix removed dentries still existing after log is synced When we move one inode from one directory to another and both the inode and its previous parent directory were logged before, we are not supposed to ...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
NEXT »