Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
authoritative vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-3615
named in ISC BIND 9.7.2-P2 does not check all intended locations for allow-query ACLs, which might allow remote malicious users to make successful requests for private DNS records via the standard DNS query mechanism.
Isc Bind 9.7.2
1 Nmap script
NA
CVE-2002-0018
In Microsoft Windows NT and Windows 2000, a trusting domain that receives authorization information from a trusted domain does not verify that the trusted domain is authoritative for all listed SIDs, which allows remote malicious users to gain Domain Administrator privileges on t...
Microsoft Windows 2000
Microsoft Windows Nt
NA
CVE-2010-0213
BIND 9.7.1 and 9.7.1-P1, when a recursive validating server has a trust anchor that is configured statically or via DNSSEC Lookaside Validation (DLV), allows remote malicious users to cause a denial of service (infinite loop) via a query for an RRSIG record whose answer is not in...
Isc Bind 9.7.1
NA
CVE-2014-8601
PowerDNS Recursor prior to 3.6.2 does not limit delegation chaining, which allows remote malicious users to cause a denial of service ("performance degradations") via a large or infinite number of referrals, as demonstrated by resolving domains hosted by ezdns.it.
Debian Debian Linux 7.0
Powerdns Recursor
7.5
CVSSv3
CVE-2023-5517
A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure when: - `nxdomain-redirect <domain>;` is configured, and - the resolver receives a PTR query for an RFC 1918 address that would normally result in an authoritative NXDOMAIN respons...
5.3
CVSSv3
CVE-2022-23655
Octobercms is a self-hosted CMS platform based on the Laravel PHP Framework. Affected versions of OctoberCMS did not validate gateway server signatures. As a result non-authoritative gateway servers may be used to exfiltrate user private keys. Users are advised to upgrade their i...
Octobercms October
5.9
CVSSv3
CVE-2018-14644
An issue has been found in PowerDNS Recursor from 4.0.0 up to and including 4.1.4. A remote attacker sending a DNS query for a meta-type like OPT can lead to a zone being wrongly cached as failing DNSSEC validation. It only arises if the parent zone is signed, and all the authori...
Powerdns Recursor
NA
CVE-2012-5166
ISC BIND 9.x prior to 9.7.6-P4, 9.8.x prior to 9.8.3-P4, 9.9.x prior to 9.9.1-P4, and 9.4-ESV and 9.6-ESV prior to 9.6-ESV-R7-P4 allows remote malicious users to cause a denial of service (named daemon hang) via unspecified combinations of resource records.
Isc Bind 9.6
Isc Bind 9.4
Isc Bind 9.9.0
Isc Bind 9.8.3
Isc Bind 9.8.1
Isc Bind 9.8.0
Isc Bind 9.7.5
Isc Bind 9.7.3
Isc Bind 9.7.1
Isc Bind 9.7.0
Isc Bind 9.6.3
Isc Bind 9.6.1
Isc Bind 9.6.0
Isc Bind 9.9.1
Isc Bind 9.8.2
Isc Bind 9.7.4
Isc Bind 9.7.2
Isc Bind 9.6.2
Isc Bind 9.5.3
Isc Bind 9.5.2
Isc Bind 9.5.0
Isc Bind 9.4.3
NA
CVE-2000-0887
named in BIND 8.2 up to and including 8.2.2-P6 allows remote malicious users to cause a denial of service by making a compressed zone transfer (ZXFR) request and performing a name service query on an authoritative record that is not cached, aka the "zxfr bug."
Isc Bind 8.2.2
1 EDB exploit
5.9
CVSSv3
CVE-2016-9778
An error in handling certain queries can cause an assertion failure when a server is using the nxdomain-redirect feature to cover a zone for which it is also providing authoritative service. A vulnerable server could be intentionally stopped by an attacker if it was using a confi...
Isc Bind 9.9.8
Isc Bind 9.9.9
Isc Bind 9.11.0
Netapp Solidfire Element Os Management Node -
Netapp Data Ontap Edge -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »