Nlnetlabs

Unbound

31 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2020-10772

  • EPSS 0.3%
  • Published 27.11.2020 18:15:11
  • Last modified 21.11.2024 04:56:02

An incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Hat Enterprise Linux 7, as part of erratum RHSA-2020:2414. Vulnerable versions of Unbound could still amplify an incoming query into a large number of queries directed to a target, e...

7.5

CVE-2020-12663

  • EPSS 12.63%
  • Published 19.05.2020 14:15:11
  • Last modified 21.11.2024 05:00:01

Unbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers.

7.5

CVE-2020-12662

  • EPSS 13.33%
  • Published 19.05.2020 14:15:11
  • Last modified 21.11.2024 05:00:00

Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.

7.3

CVE-2019-18934

Exploit
  • EPSS 1.03%
  • Published 19.11.2019 18:15:10
  • Last modified 21.11.2024 04:33:52

Unbound 1.6.4 through 1.9.4 contain a vulnerability in the ipsec module that can cause shell code execution after receiving a specially crafted answer. This issue can only be triggered if unbound was compiled with `--enable-ipsecmod` support, and ips...

7.5

CVE-2019-16866

  • EPSS 1.25%
  • Published 03.10.2019 19:15:09
  • Last modified 21.11.2024 04:31:14

Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a crash via a crafted NOTIFY query. The source IP address of the query must match an access-control rule.

5.3

CVE-2017-15105

  • EPSS 0.68%
  • Published 23.01.2018 16:29:00
  • Last modified 21.11.2024 03:14:05

A flaw was found in the way unbound before 1.6.8 validated wildcard-synthesized NSEC records. An improperly validated wildcard NSEC record could be used to prove the non-existence (NXDOMAIN answer) of an existing wildcard record, or trick unbound int...

4.3

CVE-2014-8602

  • EPSS 10.5%
  • Published 11.12.2014 02:59:03
  • Last modified 12.04.2025 10:46:40

iterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegation chaining, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a large or infinite number of referrals.

5

CVE-2009-4008

  • EPSS 0.2%
  • Published 02.06.2011 20:55:01
  • Last modified 11.04.2025 00:51:21

Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.

4.3

CVE-2011-1922

  • EPSS 1.22%
  • Published 31.05.2011 20:55:03
  • Last modified 11.04.2025 00:51:21

daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DNS request that trigger...

5

CVE-2010-0969

  • EPSS 1.38%
  • Published 16.03.2010 19:00:00
  • Last modified 11.04.2025 00:51:21

Unbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.