Latest nic knot resolver Vulnerabilities

CVE-2023-50387
Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2022
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2022, 23H2 Edition
Microsoft Windows Server 2022
and 56 more
CVE-2023-46317
Knot Resolver before 5.7.0 performs many TCP reconnections upon receiving certain nonsensical responses from servers.
Nic Knot Resolver<5.7.0
CVE-2023-26249
Nic Knot Resolver<5.6.0
CVE-2022-40188
Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service (CPU consumption) because of algorithmic complexity. During an attack, an authoritative server must return large NS sets...
Nic Knot Resolver<5.5.3
Fedoraproject Fedora=35
Fedoraproject Fedora=36
Fedoraproject Fedora=37
Debian Debian Linux=10.0
ubuntu/knot-resolver<5.5.1-5ubuntu0.22.10.1
and 11 more
CVE-2020-12667
Knot Resolver before 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in...
Nic Knot Resolver<5.1.1
CVE-2019-19331
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases ...
Nic Knot Resolver<4.3.0
Debian Debian Linux=10.0
CVE-2013-5661
Cache Poisoning issue exists in DNS Response Rate Limiting.
ISC BIND>=9.8.0<=9.9.0
Nlnetlabs Nsd=3.2.15
Nic Knot Resolver<1.3.0
Redhat Enterprise Linux=6.0
Redhat Enterprise Linux=7.0
CVE-2019-10191
A vulnerability was discovered in DNS resolver of knot resolver before version 4.1.0 which allows remote attackers to downgrade DNSSEC-secure domains to DNSSEC-insecure state, opening possibility of d...
Nic Knot Resolver<4.1.0
Fedoraproject Fedora=29
Fedoraproject Fedora=30
CVE-2019-10190
A vulnerability was discovered in DNS resolver component of knot resolver through version 3.2.0 before 4.1.0 which allows remote attackers to bypass DNSSEC validation for non-existence answer. NXDOMAI...
Nic Knot Resolver<=3.2.0
Nic Knot Resolver>=4.0.0<4.1.0
Fedoraproject Fedora=29
Fedoraproject Fedora=30
CVE-2018-10920
Improper input validation bug in DNS resolver component of Knot Resolver before 2.4.1 allows remote attacker to poison cache.
Nic Knot Resolver<2.4.1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203