Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
authoritative server vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-10955
GitLab EE/CE 11.1 up to and including 12.9 is vulnerable to parameter tampering on an upload feature that allows an unauthorized user to read content available under specific folders.
Gitlab Gitlab
Debian Debian Linux 10.0
7.5
CVSSv3
CVE-2022-24798
Internet Routing Registry daemon version 4 is an IRR database server, processing IRR objects in the RPSL format. IRRd did not always filter password hashes in query responses relating to `mntner` objects and database exports. This may have allowed adversaries to retrieve some of ...
Internet Routing Registry Daemon Project Internet Routing Registry Daemon
7.5
CVSSv3
CVE-2023-4408
The DNS message parsing code in `named` includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected `named` instance by exploiting this flaw. T...
NA
CVE-2005-3122
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-3424, CVE-2005-3425. Reason: this candidate was intended for one issue, but two different authoritative sources used it for two distinct issues. Notes: All CVE users should consult CVE-2005-3424 and CVE-2005-...
NA
CVE-2009-1755
Off-by-one error in the packet_read_query_section function in packet.c in nsd 3.2.1, and process_query_section in query.c in nsd 2.3.7, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a bu...
Nlnetlabs Nsd 2.0.1
Nlnetlabs Nsd 2.1.0
Nlnetlabs Nsd 2.1.2
Nlnetlabs Nsd 3.2.1
Nlnetlabs Nsd 2.3.7
Nlnetlabs Nsd 2.0.0
Nlnetlabs Nsd 2.1.3
Nlnetlabs Nsd 2.1.4
Nlnetlabs Nsd 2.1.5
Nlnetlabs Nsd 2.0.2
Nlnetlabs Nsd 2.1.1
NA
CVE-2011-4528
Unbound prior to 1.4.13p2 attempts to free unallocated memory during processing of duplicate CNAME records in a signed zone, which allows remote DNS servers to cause a denial of service (daemon crash) via a crafted response.
Unbound Unbound 1.4.6
Unbound Unbound 1.4.5
Unbound Unbound 1.3.3
Unbound Unbound 1.3.2
Unbound Unbound 1.0.2
Unbound Unbound 1.0.1
Unbound Unbound 1.0.0
Unbound Unbound 0.7
Unbound Unbound 0.6
Unbound Unbound 1.4.12
Unbound Unbound
Unbound Unbound 1.4.10
Unbound Unbound 1.4.9
Unbound Unbound 1.4.2
Unbound Unbound 1.4.1
Unbound Unbound 1.2.1
Unbound Unbound 1.2.0
Unbound Unbound 0.09
Unbound Unbound 0.8
Unbound Unbound 0.3
Unbound Unbound 0.2
Unbound Unbound 1.4.8
NA
CVE-2011-1910
Off-by-one error in named in ISC BIND 9.x prior to 9.7.3-P1, 9.8.x prior to 9.8.0-P2, 9.4-ESV prior to 9.4-ESV-R4-P1, and 9.6-ESV prior to 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service (assertion failure and daemon exit) via a negative response containing l...
Isc Bind 9.8.0
Isc Bind 9.7.3
Isc Bind 9.7.1
Isc Bind 9.7.0
Isc Bind 9.6.3
Isc Bind 9.6.1
Isc Bind 9.6.0
Isc Bind 9.6
Isc Bind 9.5.2
Isc Bind 9.5.1
Isc Bind 9.5.0
Isc Bind 9.5
Isc Bind 9.4.3
Isc Bind 9.4.2
Isc Bind 9.4.0
Isc Bind 9.4
Isc Bind 9.3.6
Isc Bind 9.3.3
Isc Bind 9.3.0
Isc Bind 9.2.9
Isc Bind 9.2.6
Isc Bind 9.2.5
7.5
CVSSv3
CVE-2020-12244
An issue has been found in PowerDNS Recursor 4.1.0 up to and including 4.3.0 where records in the answer section of a NXDOMAIN response lacking an SOA were not properly validated in SyncRes::processAnswer, allowing an malicious user to bypass DNSSEC validation.
Powerdns Recursor
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
NA
CVE-2005-4744
Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS 1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code by causing the external database query to...
Freeradius Freeradius 1.0.4
Freeradius Freeradius 1.0.3
NA
CVE-2009-0696
The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 prior to 9.4.3-P3, 9.5 prior to 9.5.1-P3, and 9.6 prior to 9.6.1-P1, when configured as a master server, allows remote malicious users to cause a denial of service (assertion failure and daemon exit) via an ANY rec...
Isc Bind 9.6.1
Isc Bind 9.6
Isc Bind 9.6.0
Isc Bind 9.5.0
Isc Bind 9.4.3
Isc Bind 9.4.2
Isc Bind 9.4.0
Isc Bind 9.4
Isc Bind 9.5
Isc Bind 9.4.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »