Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nic vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-3346
Foris prior to 101.1.1, as used in Turris OS, lacks certain HTML escaping in the login template.
Nic Foris
6.8
CVSSv3
CVE-2021-26928
BIRD up to and including 2.0.7 does not provide functionality for password authentication of BGP peers. Because of this, products that use BIRD (which may, for example, include Tigera products in some configurations, as well as products of other vendors) may have been susceptible...
Nic Bird
6.8
CVSSv3
CVE-2018-10920
Improper input validation bug in DNS resolver component of Knot Resolver prior to 2.4.1 allows remote malicious user to poison cache.
Nic Knot Resolver
1 Github repository
7.5
CVSSv3
CVE-2023-46317
Knot Resolver prior to 5.7.0 performs many TCP reconnections upon receiving certain nonsensical responses from servers.
Nic Knot Resolver
7.5
CVSSv3
CVE-2018-1110
A flaw was found in knot-resolver before version 2.3.0. Malformed DNS messages may cause denial of service.
Nic Knot Resolver
7.5
CVSSv3
CVE-2023-26249
Knot Resolver prior to 5.6.0 enables malicious users to consume its resources, launching amplification attacks and potentially causing a denial of service. Specifically, a single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without...
Nic Knot Resolver
5.3
CVSSv3
CVE-2022-32983
Knot Resolver up to and including 5.5.1 may allow DNS cache poisoning when there is an attempt to limit forwarding actions by filters.
Nic Knot Resolver
7.5
CVSSv3
CVE-2020-12667
Knot Resolver prior to 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.
Nic Knot Resolver
7.5
CVSSv3
CVE-2021-40083
Knot Resolver prior to 5.3.2 is prone to an assertion failure, triggerable by a remote attacker in an edge case (NSEC3 with too many iterations used for a positive wildcard proof).
Nic Knot Resolver
7.5
CVSSv3
CVE-2014-0486
Knot DNS prior to 1.5.2 allows remote malicious users to cause a denial of service (application crash) via a crafted DNS message.
Nic Knot Cms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »