Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
authoritative vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2017-15120
An issue has been found in the parsing of authoritative answers in PowerDNS Recursor prior to 4.0.8, leading to a NULL pointer dereference when parsing a specially crafted answer containing a CNAME of a different class than IN. An unauthenticated remote attacker could cause a den...
Powerdns Recursor
Debian Debian Linux 8.0
Debian Debian Linux 9.0
1 Github repository
356
VMScore
CVE-2020-10955
GitLab EE/CE 11.1 up to and including 12.9 is vulnerable to parameter tampering on an upload feature that allows an unauthorized user to read content available under specific folders.
Gitlab Gitlab
Debian Debian Linux 10.0
445
VMScore
CVE-2012-2978
query.c in NSD 3.0.x up to and including 3.0.8, 3.1.x up to and including 3.1.1, and 3.2.x prior to 3.2.12 allows remote malicious users to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet.
Nlnetlabs Nsd 3.0.2
Nlnetlabs Nsd 3.0.1
Nlnetlabs Nsd 3.0.0
Nlnetlabs Nsd 3.0.8
Nlnetlabs Nsd 3.0.7
Nlnetlabs Nsd 3.0.4
Nlnetlabs Nsd 3.0.3
Nlnetlabs Nsd 3.0.6
Nlnetlabs Nsd 3.0.5
Nlnetlabs Nsd 3.1.1
Nlnetlabs Nsd 3.1.0
Nlnetlabs Nsd 3.2.5
Nlnetlabs Nsd 3.2.6
Nlnetlabs Nsd 3.2.3
Nlnetlabs Nsd 3.2.4
Nlnetlabs Nsd 3.2.7
Nlnetlabs Nsd 3.2.8
Nlnetlabs Nsd 3.2.9
Nlnetlabs Nsd 3.2.1
Nlnetlabs Nsd 3.2.0
Nlnetlabs Nsd 3.2.10
445
VMScore
CVE-2022-24798
Internet Routing Registry daemon version 4 is an IRR database server, processing IRR objects in the RPSL format. IRRd did not always filter password hashes in query responses relating to `mntner` objects and database exports. This may have allowed adversaries to retrieve some of ...
Internet Routing Registry Daemon Project Internet Routing Registry Daemon
385
VMScore
CVE-2017-3140
If named is configured to use Response Policy Zones (RPZ) an error processing some rule types can lead to a condition where BIND will endlessly loop while handling a query. Affects BIND 9.9.10, 9.10.5, 9.11.0->9.11.1, 9.9.10-S1, 9.10.5-S1.
Isc Bind 9.9.10
Isc Bind 9.10.5
Isc Bind
Netapp Oncommand Balance -
Netapp Element Software -
Netapp Data Ontap Edge -
694
VMScore
CVE-2011-4869
validator/val_nsec3.c in Unbound prior to 1.4.13p2 does not properly perform proof processing for NSEC3-signed zones, which allows remote DNS servers to cause a denial of service (daemon crash) via a malformed response that lacks expected NSEC3 records, a different vulnerability ...
Unbound Unbound 1.4.11
Unbound Unbound 1.4.3
Unbound Unbound 1.4.2
Unbound Unbound 1.3.1
Unbound Unbound 1.3.0
Unbound Unbound 1.0.0
Unbound Unbound 0.11
Unbound Unbound 0.10
Unbound Unbound 0.5
Unbound Unbound 0.4
Unbound Unbound 1.4.10
Unbound Unbound 1.4.9
Unbound Unbound 1.4.8
Unbound Unbound 1.4.1
Unbound Unbound 1.4.0
Unbound Unbound 1.2.1
Unbound Unbound 1.2.0
Unbound Unbound 0.09
Unbound Unbound 0.8
Unbound Unbound 0.3
Unbound Unbound 0.2
Unbound Unbound 1.4.7
445
VMScore
CVE-2009-1755
Off-by-one error in the packet_read_query_section function in packet.c in nsd 3.2.1, and process_query_section in query.c in nsd 2.3.7, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a bu...
Nlnetlabs Nsd 2.0.1
Nlnetlabs Nsd 2.1.0
Nlnetlabs Nsd 2.1.2
Nlnetlabs Nsd 3.2.1
Nlnetlabs Nsd 2.3.7
Nlnetlabs Nsd 2.0.0
Nlnetlabs Nsd 2.1.3
Nlnetlabs Nsd 2.1.4
Nlnetlabs Nsd 2.1.5
Nlnetlabs Nsd 2.0.2
Nlnetlabs Nsd 2.1.1
NA
CVE-2023-4408
The DNS message parsing code in `named` includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected `named` instance by exploiting this flaw. T...
445
VMScore
CVE-2011-4528
Unbound prior to 1.4.13p2 attempts to free unallocated memory during processing of duplicate CNAME records in a signed zone, which allows remote DNS servers to cause a denial of service (daemon crash) via a crafted response.
Unbound Unbound 1.4.6
Unbound Unbound 1.4.5
Unbound Unbound 1.3.3
Unbound Unbound 1.3.2
Unbound Unbound 1.0.2
Unbound Unbound 1.0.1
Unbound Unbound 1.0.0
Unbound Unbound 0.7
Unbound Unbound 0.6
Unbound Unbound 1.4.12
Unbound Unbound
Unbound Unbound 1.4.10
Unbound Unbound 1.4.9
Unbound Unbound 1.4.2
Unbound Unbound 1.4.1
Unbound Unbound 1.2.1
Unbound Unbound 1.2.0
Unbound Unbound 0.09
Unbound Unbound 0.8
Unbound Unbound 0.3
Unbound Unbound 0.2
Unbound Unbound 1.4.8
NA
CVE-2021-47072
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix removed dentries still existing after log is synced When we move one inode from one directory to another and both the inode and its previous parent directory were logged before, we are not supposed to ...
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
NEXT »