Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cache poisoning vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2007-3898
The DNS server in Microsoft Windows 2000 Server SP4, and Server 2003 SP1 and SP2, uses predictable transaction IDs when querying other DNS servers, which allows remote malicious users to spoof DNS replies, poison the DNS cache, and facilitate further attack vectors.
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows 2003 Server
2 EDB exploits
5
CVSSv2
CVE-2016-9450
The user password reset form in Drupal 8.x prior to 8.2.3 allows remote malicious users to conduct cache poisoning attacks by leveraging failure to specify a correct cache context.
Drupal Drupal 8.2.2
Drupal Drupal 8.2.0
Drupal Drupal 8.0.0
Drupal Drupal 8.0.2
Drupal Drupal 8.1.0
Drupal Drupal 8.1.1
Drupal Drupal 8.1.6
Drupal Drupal 8.1.8
Drupal Drupal 8.0.4
Drupal Drupal 8.0.5
Drupal Drupal 8.0.6
Drupal Drupal 8.1.2
Drupal Drupal 8.1.3
Drupal Drupal 8.1.4
Drupal Drupal 8.1.5
Drupal Drupal 8.2.1
Drupal Drupal 8.1.10
Drupal Drupal 8.0.1
Drupal Drupal 8.0.3
Drupal Drupal 8.1.7
Drupal Drupal 8.1.9
4
CVSSv2
CVE-2022-30295
uClibc-ng up to and including 1.0.40 and uClibc up to and including 0.9.33.2 use predictable DNS transaction IDs that may lead to DNS cache poisoning. This is related to a reset of a value to 0x2.
Uclibc Uclibc
Uclibc-ng Project Uclibc-ng
10
CVSSv2
CVE-1999-0165
NFS cache poisoning.
Sun Nfs
Sun Sunos 5.3
Sun Sunos 4.0.1
Sun Sunos 4.1.4
Sun Solaris 2.4
Sun Sunos 4.0.3
Sun Sunos 4.1
Sun Sunos 5.4
Sun Sunos 4.0.2
Sun Sunos 4.1.1
Bsdi Bsd Os
Sun Sunos 5.1
Sun Sunos 4.1.3
Sun Sunos 4.1.2
Sun Sunos 3.5
Sun Sunos 4.0
Linux Linux Kernel 2.6.20.1
Sun Sunos 5.0
Sun Sunos -
Sun Sunos 5.2
5
CVSSv2
CVE-1999-0024
DNS cache poisoning via BIND, by predictable query IDs.
Isc Bind 8.1
Isc Bind 4.9.5
Sco Openserver 5.0
Sco Open Desktop 3.0
Sun Sunos 5.3
Nec Ews-ux V 4.2mp
Sun Solaris 2.4
Sun Solaris 2.5.1
Sun Solaris 2.5
Ibm Aix 4.2
Nec Asl Ux 4800 64
Sun Sunos 5.5
Bsdi Bsd Os 3.0
Nec Ews-ux V 4.2
Sco Unixware 2.1
Bsdi Bsd Os 2.1
Sco Unix 3.2v4
Nec Up-ux V 4.2mp
Sun Sunos -
Sun Sunos 5.4
Sun Solaris 2.6
Ibm Aix 4.1
2.6
CVSSv2
CVE-2013-5661
Cache Poisoning issue exists in DNS Response Rate Limiting.
Isc Bind
Nlnetlabs Nsd 3.2.15
Nic Knot Resolver
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 7.0
4.3
CVSSv2
CVE-2019-19326
Silverstripe CMS sites up to and including 4.4.4 which have opted into HTTP Cache Headers on responses served by the framework's HTTP layer can be vulnerable to web cache poisoning. Through modifying the X-Original-Url and X-HTTP-Method-Override headers, responses with malic...
Silverstripe Silverstripe
9.4
CVSSv2
CVE-2008-1454
Unspecified vulnerability in Microsoft DNS in Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008 allows remote malicious users to conduct cache poisoning attacks via unknown vectors related to accepting "records from a response that is outside the remote server'...
Microsoft Windows 2000
Microsoft Windows Xp
Microsoft Windows Server 2003
Microsoft Windows Server 2008
NA
CVE-2023-27238
LavaLite CMS v 9.0.0 exists to be vulnerable to web cache poisoning.
Lavalite Lavalite 9.0.0
6.5
CVSSv2
CVE-2022-1423
Improper access control in the CI/CD cache mechanism in GitLab CE/EE affecting all versions starting from 1.0.2 prior to 14.8.6, all versions from 14.9.0 prior to 14.9.4, and all versions from 14.10.0 prior to 14.10.1 allows a malicious actor with Developer privileges to perform ...
Gitlab Gitlab 14.10.0
Gitlab Gitlab
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »