浏览 25+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-3080 | BIND 9 resolvers configured to answer from stale cache with zero stale-answer-client-timeout may terminate unexpectedly | ISC | BIND9 | High | 7.5 | 2022-09-21 10:15:30 | Deep Dive |
| CVE-2022-38178 | Memory leaks in EdDSA DNSSEC verification code | ISC | BIND9 | High | 7.5 | 2022-09-21 10:15:29 | Deep Dive |
| CVE-2022-38177 | Memory leak in ECDSA DNSSEC verification code | ISC | BIND9 | High | 7.5 | 2022-09-21 10:15:28 | Deep Dive |
| CVE-2022-2906 | Memory leaks in code handling Diffie-Hellman key exchange via TKEY RRs (OpenSSL 3.0.0+ only) | ISC | BIND9 | High | 7.5 | 2022-09-21 10:15:27 | Deep Dive |
| CVE-2022-2881 | Buffer overread in statistics channel code | ISC | BIND9 | Medium | 5.5 | 2022-09-21 10:15:27 | Deep Dive |
| CVE-2022-2795 | Processing large delegations may severely degrade resolver performance | ISC | BIND9 | Medium | 5.3 | 2022-09-21 10:15:26 | Deep Dive |
| CVE-2022-1183 | Destroying a TLS session early causes assertion failure | ISC | BIND9 | High | 7.5 | 2022-05-19 09:55:10 | Deep Dive |
| CVE-2021-25219 | Lame cache can be abused to severely degrade resolver performance | ISC | BIND9 | Medium | 5.3 | 2021-10-27 21:10:10 | Deep Dive |
| CVE-2021-25218 | A too-strict assertion check could be triggered when responses in BIND 9.16.19 and 9.17.16 require UDP fragmentation if RRL is in use | ISC | BIND9 | High | 7.5 | 2021-08-18 18:20:12 | Deep Dive |
| CVE-2021-25216 | A second vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack | ISC | BIND9 | High | 8.1 | 2021-04-29 00:55:17 | Deep Dive |
| CVE-2021-25215 | An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself | ISC | BIND9 | High | 7.5 | 2021-04-29 00:55:17 | Deep Dive |
| CVE-2021-25214 | A broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly | ISC | BIND9 | Medium | 6.5 | 2021-04-29 00:55:16 | Deep Dive |
| CVE-2020-8625 | A vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack | ISC | BIND9 | High | 8.1 | 2021-02-17 22:40:16 | Deep Dive |
| CVE-2020-8624 | update-policy rules of type "subdomain" are enforced incorrectly | ISC | BIND9 | Medium | 4.3 | 2020-08-21 20:50:20 | Deep Dive |
| CVE-2020-8623 | A flaw in native PKCS#11 code can lead to a remotely triggerable assertion failure in pk11.c | ISC | BIND9 | High | 7.5 | 2020-08-21 20:50:20 | Deep Dive |
| CVE-2020-8622 | A truncated TSIG response can lead to an assertion failure | ISC | BIND9 | Medium | 6.5 | 2020-08-21 20:50:19 | Deep Dive |
| CVE-2020-8621 | Attempting QNAME minimization after forwarding can lead to an assertion failure in resolver.c | ISC | BIND9 | High | 7.5 | 2020-08-21 20:50:19 | Deep Dive |
| CVE-2020-8620 | Internet Systems Consortium BIND server 安全漏洞 | ISC | BIND9 | High | 7.5 | 2020-08-21 20:50:19 | Deep Dive |
| CVE-2020-8619 | A buffer boundary check assertion in rdataset.c can fail incorrectly during zone transfer | ISC | BIND9 | Medium | 4.9 | 2020-06-17 21:20:14 | Deep Dive |
| CVE-2020-8618 | A buffer boundary check assertion in rdataset.c can fail incorrectly during zone transfer | ISC | BIND9 | Medium | 4.9 | 2020-06-17 21:20:13 | Deep Dive |