Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knot dns vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-11104
Knot DNS prior to 2.4.5 and 2.5.x prior to 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if no additional ACL restrictions are set, because of an improper TSIG validity ...
Knot-dns Knot Dns 2.5.0
Knot-dns Knot Dns
Knot-dns Knot Dns 2.5.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
2 Github repositories
5
CVSSv2
CVE-2016-6171
Knot DNS prior to 2.3.0 allows remote DNS servers to cause a denial of service (memory exhaustion and slave server crash) via a large zone transfer for (1) DDNS, (2) AXFR, or (3) IXFR.
Knot-dns Knot Dns
4.3
CVSSv2
CVE-2018-10920
Improper input validation bug in DNS resolver component of Knot Resolver prior to 2.4.1 allows remote malicious user to poison cache.
Nic Knot Resolver
1 Github repository
5
CVSSv2
CVE-2014-0486
Knot DNS prior to 1.5.2 allows remote malicious users to cause a denial of service (application crash) via a crafted DNS message.
Nic Knot Cms
5
CVSSv2
CVE-2018-1110
A flaw was found in knot-resolver before version 2.3.0. Malformed DNS messages may cause denial of service.
Nic Knot Resolver
5
CVSSv2
CVE-2022-32983
Knot Resolver up to and including 5.5.1 may allow DNS cache poisoning when there is an attempt to limit forwarding actions by filters.
Nic Knot Resolver
5
CVSSv2
CVE-2020-12667
Knot Resolver prior to 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.
Nic Knot Resolver
4.3
CVSSv2
CVE-2018-1000002
Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.
Nic Knot Resolver
NA
CVE-2023-26249
Knot Resolver prior to 5.6.0 enables malicious users to consume its resources, launching amplification attacks and potentially causing a denial of service. Specifically, a single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without...
Nic Knot Resolver
5
CVSSv2
CVE-2019-19331
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a f...
Nic Knot Resolver
Debian Debian Linux 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »