Nlnetlabs

Unbound

32 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-28935

  • EPSS 0.08%
  • Veröffentlicht 07.12.2020 22:15:20
  • Zuletzt bearbeitet 21.11.2024 05:23:19

NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it...

7.5

CVE-2020-10772

  • EPSS 0.3%
  • Veröffentlicht 27.11.2020 18:15:11
  • Zuletzt bearbeitet 21.11.2024 04:56:02

An incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Hat Enterprise Linux 7, as part of erratum RHSA-2020:2414. Vulnerable versions of Unbound could still amplify an incoming query into a large number of queries directed to a target, e...

7.5

CVE-2020-12663

  • EPSS 9.08%
  • Veröffentlicht 19.05.2020 14:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:01

Unbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers.

7.5

CVE-2020-12662

  • EPSS 15.51%
  • Veröffentlicht 19.05.2020 14:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:00

Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.

7.3

CVE-2019-18934

Exploit
  • EPSS 1.23%
  • Veröffentlicht 19.11.2019 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:33:52

Unbound 1.6.4 through 1.9.4 contain a vulnerability in the ipsec module that can cause shell code execution after receiving a specially crafted answer. This issue can only be triggered if unbound was compiled with `--enable-ipsecmod` support, and ips...

7.5

CVE-2019-16866

  • EPSS 1.84%
  • Veröffentlicht 03.10.2019 19:15:09
  • Zuletzt bearbeitet 21.11.2024 04:31:14

Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a crash via a crafted NOTIFY query. The source IP address of the query must match an access-control rule.

5.3

CVE-2017-15105

  • EPSS 0.69%
  • Veröffentlicht 23.01.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:14:05

A flaw was found in the way unbound before 1.6.8 validated wildcard-synthesized NSEC records. An improperly validated wildcard NSEC record could be used to prove the non-existence (NXDOMAIN answer) of an existing wildcard record, or trick unbound int...

4.3

CVE-2014-8602

  • EPSS 9.76%
  • Veröffentlicht 11.12.2014 02:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

iterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegation chaining, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a large or infinite number of referrals.

5

CVE-2009-4008

  • EPSS 0.27%
  • Veröffentlicht 02.06.2011 20:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.

4.3

CVE-2011-1922

  • EPSS 1.22%
  • Veröffentlicht 31.05.2011 20:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DNS request that trigger...