Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nlnetlabs unbound vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2019-25032
Unbound prior to 1.9.5 allows an integer overflow in the regional allocator via regional_alloc. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Nlnetlabs Unbound
Debian Debian Linux 9.0
668
VMScore
CVE-2019-25034
Unbound prior to 1.9.5 allows an integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally explo...
Nlnetlabs Unbound
Debian Debian Linux 9.0
668
VMScore
CVE-2019-25039
Unbound prior to 1.9.5 allows an integer overflow in a size calculation in respip/respip.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Nlnetlabs Unbound
Debian Debian Linux 9.0
668
VMScore
CVE-2019-25042
Unbound prior to 1.9.5 allows an out-of-bounds write via a compressed name in rdata_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Nlnetlabs Unbound
Debian Debian Linux 9.0
668
VMScore
CVE-2019-25033
Unbound prior to 1.9.5 allows an integer overflow in the regional allocator via the ALIGN_UP macro. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Nlnetlabs Unbound
Debian Debian Linux 9.0
668
VMScore
CVE-2019-25035
Unbound prior to 1.9.5 allows an out-of-bounds write in sldns_bget_token_par. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Nlnetlabs Unbound
Debian Debian Linux 9.0
668
VMScore
CVE-2019-25038
Unbound prior to 1.9.5 allows an integer overflow in a size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Nlnetlabs Unbound
Debian Debian Linux 9.0
668
VMScore
CVE-2009-3602
Unbound prior to 1.3.4 does not properly verify signatures for NSEC3 records, which allows remote malicious users to cause secure delegations to be downgraded via DNS spoofing or other DNS-related attacks in conjunction with crafted delegation responses.
Nlnetlabs Unbound 1.3.2
Nlnetlabs Unbound 1.3.1
Nlnetlabs Unbound 1.0.1
Nlnetlabs Unbound 1.0.0
Nlnetlabs Unbound 0.7
Nlnetlabs Unbound 0.6
Nlnetlabs Unbound 1.2.0
Nlnetlabs Unbound 1.1.1
Nlnetlabs Unbound 0.09
Nlnetlabs Unbound 0.8
Nlnetlabs Unbound 0.3
Nlnetlabs Unbound 0.2
Nlnetlabs Unbound 0.1
Nlnetlabs Unbound
Nlnetlabs Unbound 1.1.0
Nlnetlabs Unbound 1.0.2
Nlnetlabs Unbound 0.7.2
Nlnetlabs Unbound 0.7.1
Nlnetlabs Unbound 0.0
Nlnetlabs Unbound 1.3.0
Nlnetlabs Unbound 1.2.1
Nlnetlabs Unbound 0.11
605
VMScore
CVE-2019-18934
Unbound 1.6.4 up to and including 1.9.4 contain a vulnerability in the ipsec module that can cause shell code execution after receiving a specially crafted answer. This issue can only be triggered if unbound was compiled with `--enable-ipsecmod` support, and ipsecmod is enabled a...
Nlnetlabs Unbound
Fedoraproject Fedora 31
Opensuse Leap 15.1
Opensuse Leap 15.2
445
VMScore
CVE-2019-25040
Unbound prior to 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Nlnetlabs Unbound
Debian Debian Linux 9.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »