Filters
Software
Microsoft Windows Server 2012Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities
7.5
First published (updated )
Nlnetlabs RoutinatorPossible path traversal when storing RRDP responses
9.3
First published (updated )
Nlnetlabs RoutinatorCrashes on parsing certain invalid RPKI objects
7.5
First published (updated )
rust/bcderBER/CER/DER decoder panics on invalid input
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nlnetlabs RoutinatorFatal error on incorrect base64 data in RRDP
7.5
First published (updated )
Fedoraproject FedoraNovel "ghost domain names" attack by updating almost expired delegation information
6.5
First published (updated )
Fedoraproject FedoraNovel "ghost domain names" attack by introducing subdomain delegations
6.5
First published (updated )
Nlnetlabs LdnsWhen a zone file in ldns 1.7.1 is parsed, the function ldns_nsec3_salt_data is too trusted for the l…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nlnetlabs LdnsWhen ldns version 1.7.1 verifies a zone file, the ldns_rr_new_frm_str_internal function has a heap o…
6.5
First published (updated )
Nlnetlabs RoutinatorInfinite length chain of RRDP repositories
7.5
First published (updated )
debian/cfrpkigzip transfer encoding caused out-of-memory crash
7.5
First published (updated )
Nlnetlabs RoutinatorInvalid RPKI data could disable Route Origin Validation on RTR clients.
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nlnetlabs UnboundUnbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successfu…
5.9
First published (updated )
Nlnetlabs UnboundUnbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token_par. NOTE: The vendor dispute…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nlnetlabs UnboundUnbound before 1.9.5 allows an assertion failure and denial of service in synth_cname. NOTE: The ven…
7.5
First published (updated )
Nlnetlabs UnboundUnbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an inva…
7.5
First published (updated )
Nlnetlabs UnboundUnbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vend…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nlnetlabs UnboundUnbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. NOTE: The …
7.5
First published (updated )
Nlnetlabs UnboundUnbound before 1.9.5 allows an out-of-bounds write via a compressed name in rdata_copy. NOTE: The ve…
9.8
First published (updated )
Nlnetlabs Name Server DaemonLocal symlink attack in Unbound and NSD
5.5
First published (updated )
Nlnetlabs RoutinatorAn issue was discovered in NLnet Labs Routinator 0.1.0 through 0.7.1. It allows remote attackers to …
7.4
First published (updated )
Nlnetlabs UnboundAn incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Hat Enterprise Linux 7, as part …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/unboundUnbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue.…
7.5
First published (updated )
ubuntu/unboundUnbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers.
7.5
First published (updated )
Redhat Enterprise LinuxCache Poisoning issue exists in DNS Response Rate Limiting.
5.9
First published (updated )
debian/unboundUnbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a crash…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nlnetlabs NsdNSD before 4.1.11 allows remote DNS master servers to cause a denial of service (/tmp disk consumpti…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Canonical Ubuntu Linuxiterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegation chaining, which allows remot…
4.3
First published (updated )
Nlnetlabs LdnsThe ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, …
2.1
First published (updated )
Nlnetlabs NsdBuffer Overflow, Null Pointer Dereference
First published (updated )
Nlnetlabs UnboundUnbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nlnetlabs Unbounddaemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automat…
4.3
First published (updated )
Nlnetlabs UnboundUnbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote att…
First published (updated )
Nlnetlabs UnboundUnbound before 1.3.4 does not properly verify signatures for NSEC3 records, which allows remote atta…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.