exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

CVE-2017-11104

больше 8 лет назад

Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if no additional ACL restrictions are set, because of an improper TSIG validity period check.

CVSS3: 5.9

EPSS: Низкий

CVE-2017-11104

больше 8 лет назад

Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if no additional ACL restrictions are set, because of an improper TSIG validity period check.

CVSS3: 5.9

EPSS: Низкий

CVE-2017-11104

больше 8 лет назад

Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within th ...

CVSS3: 5.9

EPSS: Низкий

openSUSE-SU-2020:1086-1

больше 5 лет назад

Security update for knot

EPSS: Низкий

openSUSE-SU-2020:1085-1

больше 5 лет назад

Security update for knot

EPSS: Низкий

openSUSE-SU-2018:1395-1

больше 7 лет назад

Security update for knot

EPSS: Низкий

GHSA-xhxv-xr8w-7xpm

больше 3 лет назад

Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if no additional ACL restrictions are set, because of an improper TSIG validity period check.

CVSS3: 5.9

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2017-11104 Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if no additional ACL restrictions are set, because of an improper TSIG validity period check.	CVSS3: 5.9	2% Низкий	больше 8 лет назад
CVE-2017-11104 Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if no additional ACL restrictions are set, because of an improper TSIG validity period check.	CVSS3: 5.9	2% Низкий	больше 8 лет назад
CVE-2017-11104 Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within th ...	CVSS3: 5.9	2% Низкий	больше 8 лет назад
openSUSE-SU-2020:1086-1 Security update for knot		2% Низкий	больше 5 лет назад
openSUSE-SU-2020:1085-1 Security update for knot		2% Низкий	больше 5 лет назад
openSUSE-SU-2018:1395-1 Security update for knot		2% Низкий	больше 7 лет назад
GHSA-xhxv-xr8w-7xpm Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if no additional ACL restrictions are set, because of an improper TSIG validity period check.	CVSS3: 5.9	2% Низкий	больше 3 лет назад

Уязвимостей на страницу