Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
isc vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-6469
An error in the EDNS Client Subnet (ECS) feature for recursive resolvers can cause BIND to exit with an assertion failure when processing a response that has malformed RRSIGs. Versions affected: BIND 9.10.5-S1 -> 9.11.6-S1 of BIND 9 Supported Preview Edition.
Isc Bind 9.11.6
Isc Bind 9.10.5
7.5
CVSSv3
CVE-2019-6468
In BIND Supported Preview Edition, an error in the nxdomain-redirect feature can occur in versions which support EDNS Client Subnet (ECS) features. In those versions which have ECS support, enabling nxdomain-redirect is likely to lead to BIND exiting due to assertion failure. Ver...
Isc Bind 9.10.5
Isc Bind 9.11.5
7.5
CVSSv3
CVE-2018-5734
While handling a particular type of malformed packet BIND erroneously selects a SERVFAIL rcode instead of a FORMERR rcode. If the receiving view has the SERVFAIL cache feature enabled, this can trigger an assertion failure in badcache.c when the request doesn't contain all o...
Isc Bind 9.10.6
Isc Bind 9.10.5
Netapp Solidfire Element Os Management Node -
Netapp Data Ontap Edge -
7.5
CVSSv3
CVE-2018-5738
Change #4777 (introduced in October 2017) introduced an unforeseen issue in releases which were issued after that date, affecting which clients are permitted to make recursive queries to a BIND nameserver. The intended (and documented) behavior is that if an operator has not spec...
Isc Bind 9.10.7
Isc Bind 9.12.0
Isc Bind 9.12.1
Isc Bind 9.11.3
Isc Bind 9.13.0
Isc Bind 9.9.12
Canonical Ubuntu Linux 18.04
7.5
CVSSv3
CVE-2018-5737
A problem with the implementation of the new serve-stale feature in BIND 9.12 can lead to an assertion failure in rbtdb.c, even when stale-answer-enable is off. Additionally, problematic interaction between the serve-stale feature and NSEC aggressive negative caching can in some ...
Isc Bind 9.12.0
Isc Bind 9.12.1
Netapp Cloud Backup -
Netapp Data Ontap Edge -
7.5
CVSSv3
CVE-2018-5739
An extension to hooks capabilities which debuted in Kea 1.4.0 introduced a memory leak for operators who are using certain hooks library facilities. In order to support multiple requests simultaneously, Kea 1.4 added a callout handle store but unfortunately the initial implementa...
Isc Kea 1.4.0
7.5
CVSSv3
CVE-2009-0265
Internet Systems Consortium (ISC) BIND 9.6.0 and previous versions does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote malicious users to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vu...
Isc Bind
7.5
CVSSv3
CVE-2006-4095
BIND prior to 9.2.6-P1 and 9.3.x prior to 9.3.2-P1 allows remote malicious users to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned.
Isc Bind
Canonical Ubuntu Linux 5.04
Canonical Ubuntu Linux 5.10
Canonical Ubuntu Linux 6.06
Apple Mac Os X Server
Apple Mac Os X
7.4
CVSSv3
CVE-2021-25217
In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches of ISC DHCP (i.e., releases in the 4.0.x series or lower and releases in the 4.3.x series) are beyond their End-of-Life (EOL) and no longer supported by ISC. From inspection it is clear that the ...
Isc Dhcp 4.1-esv
Isc Dhcp
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Siemens Ruggedcom Rox Rx1400 Firmware
Siemens Ruggedcom Rox Rx1500 Firmware
Siemens Ruggedcom Rox Rx1501 Firmware
Siemens Ruggedcom Rox Rx1510 Firmware
Siemens Ruggedcom Rox Rx1511 Firmware
Siemens Ruggedcom Rox Rx1512 Firmware
Siemens Ruggedcom Rox Rx1524 Firmware
Siemens Ruggedcom Rox Rx1536 Firmware
Siemens Ruggedcom Rox Rx5000 Firmware
Siemens Ruggedcom Rox Mx5000 Firmware
Netapp Ontap Select Deploy Administration Utility -
Netapp Solidfire \\& Hci Management Node -
Siemens Sinec Ins 1.0
Siemens Sinec Ins
7
CVSSv3
CVE-2020-15238
Blueman is a GTK+ Bluetooth Manager. In Blueman prior to 2.1.4, the DhcpClient method of the D-Bus interface to blueman-mechanism is prone to an argument injection vulnerability. The impact highly depends on the system configuration. If Polkit-1 is disabled and for versions lower...
Blueman Project Blueman
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »