exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 52

CVE-2023-4408

больше 1 года назад

CVSS3: 7.5

EPSS: Низкий

CVE-2023-4408

больше 1 года назад

The DNS message parsing code in `named` includes a section whose compu ...

CVSS3: 7.5

EPSS: Низкий

CVE-2023-50868

больше 1 года назад

The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random subdomain attack, aka the "NSEC3" issue. The RFC 5155 specification implies that an algorithm must perform thousands of iterations of a hash function in certain situations.

CVSS3: 7.5

EPSS: Средний

CVE-2023-50868

больше 1 года назад

CVSS3: 7.5

EPSS: Средний

CVE-2023-50868

больше 1 года назад

CVSS3: 7.5

EPSS: Средний

CVE-2023-50868

около 1 года назад

MITRE: CVE-2023-50868 NSEC3 closest encloser proof can exhaust CPU

CVSS3: 7.5

EPSS: Средний

CVE-2023-50868

больше 1 года назад

The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 whe ...

CVSS3: 7.5

EPSS: Средний

GHSA-x57x-3c65-5f3j

больше 1 года назад

The DNS message parsing code in `named` includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected `named` instance by exploiting this flaw. This issue affects both authoritative servers and recursive resolvers. This issue affects BIND 9 versions 9.0.0 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.9.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1.

CVSS3: 7.5

EPSS: Низкий

BDU:2024-02883

больше 1 года назад

Уязвимость компонента named сервера DNS BIND, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 7.5

EPSS: Низкий

GHSA-pv4h-p8jr-6cv2

больше 1 года назад

CVSS3: 7.5

EPSS: Средний

BDU:2024-01462

больше 1 года назад

Уязвимость компонента DNSSEC реализации протокола DNS сервера DNS BIND, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 7.5

EPSS: Средний

ROS-20240701-02

12 месяцев назад

Уязвимость dnsmasq

CVSS3: 7.5

EPSS: Средний

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2023-4408	CVSS3: 7.5	0% Низкий	больше 1 года назад
CVE-2023-4408 The DNS message parsing code in `named` includes a section whose compu ...	CVSS3: 7.5	0% Низкий	больше 1 года назад
CVE-2023-50868 The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random subdomain attack, aka the "NSEC3" issue. The RFC 5155 specification implies that an algorithm must perform thousands of iterations of a hash function in certain situations.	CVSS3: 7.5	48% Средний	больше 1 года назад
CVE-2023-50868 The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random subdomain attack, aka the "NSEC3" issue. The RFC 5155 specification implies that an algorithm must perform thousands of iterations of a hash function in certain situations.	CVSS3: 7.5	48% Средний	больше 1 года назад
CVE-2023-50868 The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random subdomain attack, aka the "NSEC3" issue. The RFC 5155 specification implies that an algorithm must perform thousands of iterations of a hash function in certain situations.	CVSS3: 7.5	48% Средний	больше 1 года назад
CVE-2023-50868 MITRE: CVE-2023-50868 NSEC3 closest encloser proof can exhaust CPU	CVSS3: 7.5	48% Средний	около 1 года назад
CVE-2023-50868 The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 whe ...	CVSS3: 7.5	48% Средний	больше 1 года назад
GHSA-x57x-3c65-5f3j The DNS message parsing code in `named` includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected `named` instance by exploiting this flaw. This issue affects both authoritative servers and recursive resolvers. This issue affects BIND 9 versions 9.0.0 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.9.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1.	CVSS3: 7.5	0% Низкий	больше 1 года назад
BDU:2024-02883 Уязвимость компонента named сервера DNS BIND, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 7.5	0% Низкий	больше 1 года назад
GHSA-pv4h-p8jr-6cv2 The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random subdomain attack, aka the "NSEC3" issue. The RFC 5155 specification implies that an algorithm must perform thousands of iterations of a hash function in certain situations.	CVSS3: 7.5	48% Средний	больше 1 года назад
BDU:2024-01462 Уязвимость компонента DNSSEC реализации протокола DNS сервера DNS BIND, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 7.5	48% Средний	больше 1 года назад
ROS-20240701-02 Уязвимость dnsmasq	CVSS3: 7.5	48% Средний	12 месяцев назад

Уязвимостей на страницу