Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nic vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-3346
Foris prior to 101.1.1, as used in Turris OS, lacks certain HTML escaping in the login template.
Nic Foris
6.8
CVSSv3
CVE-2021-26928
BIRD up to and including 2.0.7 does not provide functionality for password authentication of BGP peers. Because of this, products that use BIRD (which may, for example, include Tigera products in some configurations, as well as products of other vendors) may have been susceptible...
Nic Bird
7.5
CVSSv3
CVE-2021-40083
Knot Resolver prior to 5.3.2 is prone to an assertion failure, triggerable by a remote attacker in an edge case (NSEC3 with too many iterations used for a positive wildcard proof).
Nic Knot Resolver
7.5
CVSSv3
CVE-2023-46317
Knot Resolver prior to 5.7.0 performs many TCP reconnections upon receiving certain nonsensical responses from servers.
Nic Knot Resolver
7.5
CVSSv3
CVE-2014-0486
Knot DNS prior to 1.5.2 allows remote malicious users to cause a denial of service (application crash) via a crafted DNS message.
Nic Knot Cms
5.3
CVSSv3
CVE-2022-32983
Knot Resolver up to and including 5.5.1 may allow DNS cache poisoning when there is an attempt to limit forwarding actions by filters.
Nic Knot Resolver
3.7
CVSSv3
CVE-2018-1000002
Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.
Nic Knot Resolver
6.8
CVSSv3
CVE-2018-10920
Improper input validation bug in DNS resolver component of Knot Resolver prior to 2.4.1 allows remote malicious user to poison cache.
Nic Knot Resolver
1 Github repository
7.5
CVSSv3
CVE-2018-1110
A flaw was found in knot-resolver before version 2.3.0. Malformed DNS messages may cause denial of service.
Nic Knot Resolver
7.5
CVSSv3
CVE-2020-12667
Knot Resolver prior to 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.
Nic Knot Resolver
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »