Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2018-5742

Published: 30/10/2019 Updated: 07/11/2023
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Isc

Vulnerability Summary

While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420. Affects RedHat versions bind-9.9.4-65.el7 -> bind-9.9.4-72.el7. No ISC releases are affected. Other packages from other distributions who made the same error may also be affected.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

isc bind

Vendor Advisories

Amazon Linux 2: ALAS2-2019-1170
Crash from assertion error when debug log level is 10 and log entries meet buffer boundary This flaw appears to be exploitable only when debug logging is enabled and set to at least a level of 10 As this configuration should be rare in production instances of bind, it is unlikely that most servers will be exploitable The debug level of the bind ...

References

CWE-617https://access.redhat.com/security/cve/cve-2018-5742https://nvd.nist.govhttps://alas.aws.amazon.com/AL2/ALAS-2019-1170.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook