| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-5517 | Querying RFC 1918 reverse zones may cause an assertion failure when "nxdomain-redirect" is enabled | ISC | BIND 9 | High | 7.5 | 2024-02-13 14:04:54 | Deep Dive |
| CVE-2023-4408 | Parsing large DNS messages may cause excessive CPU load | ISC | BIND 9 | High | 7.5 | 2024-02-13 14:04:18 | Deep Dive |
| CVE-2023-4236 | named may terminate unexpectedly under high DNS-over-TLS query load | ISC | BIND 9 | High | 7.5 | 2023-09-20 12:32:17 | Deep Dive |
| CVE-2023-3341 | A stack exhaustion flaw in control channel code may cause named to terminate unexpectedly | ISC | BIND 9 | High | 7.5 | 2023-09-20 12:32:03 | Deep Dive |
| CVE-2023-2911 | Exceeding the recursive-clients quota may cause named to terminate unexpectedly when stale-answer-client-timeout is set to 0 | ISC | BIND 9 | High | 7.5 | 2023-06-21 16:26:37 | Deep Dive |
| CVE-2023-2829 | Malformed NSEC records can cause named to terminate unexpectedly when synth-from-dnssec is enabled | ISC | BIND 9 | High | 7.5 | 2023-06-21 16:26:25 | Deep Dive |
| CVE-2023-2828 | named's configured cache size limit can be significantly exceeded | ISC | BIND 9 | High | 7.5 | 2023-06-21 16:26:07 | Deep Dive |
| CVE-2022-3924 | named configured to answer from stale cache may terminate unexpectedly at recursive-clients soft quota | ISC | BIND 9 | High | 7.5 | 2023-01-25 21:39:49 | Deep Dive |
| CVE-2022-3736 | named configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries | ISC | BIND 9 | High | 7.5 | 2023-01-25 21:39:18 | Deep Dive |
| CVE-2022-3488 | named may terminate unexpectedly when processing ECS options in repeated responses to iterative queries | ISC | BIND 9 | High | 7.5 | 2023-01-25 21:37:48 | Deep Dive |
| CVE-2022-3094 | An UPDATE message flood may cause named to exhaust all available memory | ISC | BIND 9 | High | 7.5 | 2023-01-25 21:34:53 | Deep Dive |
| CVE-2021-25220 | DNS forwarders - cache poisoning vulnerability | ISC | BIND | Medium | 6.8 | 2022-03-23 12:50:10 | Deep Dive |
| CVE-2022-0635 | ISC BIND 安全漏洞 | ISC | BIND | High | 7.5 | 2022-03-23 11:55:10 | Deep Dive |
| CVE-2022-0396 | DoS from specifically crafted TCP packets | ISC | BIND | Medium | 5.3 | 2022-03-23 10:45:14 | Deep Dive |
| CVE-2022-0667 | Assertion failure on delayed DS lookup | ISC | BIND | High | 7.5 | 2022-03-22 11:15:14 | Deep Dive |
| CVE-2019-6476 | An error in QNAME minimization code can cause BIND to exit with an assertion failure | ISC | BIND 9 | Medium | 5.9 | 2019-10-17 19:17:39 | Deep Dive |
| CVE-2019-6475 | A flaw in mirror zone validity checking can allow zone data to be spoofed | ISC | BIND 9 | Medium | 5.9 | 2019-10-17 19:17:36 | Deep Dive |
| CVE-2019-6471 | A race condition when discarding malformed packets can cause BIND to exit with an assertion failure | ISC | BIND 9 | 中危 | - | 2019-10-09 14:17:15 | Deep Dive |
| CVE-2019-6469 | BIND Supported Preview Edition can exit with an assertion failure if ECS is in use | ISC | BIND 9 Supported Preview Edition | 高危 | - | 2019-10-09 14:17:15 | Deep Dive |
| CVE-2019-6465 | Zone transfer controls for writable DLZ zones were not effective | ISC | BIND 9 | 中危 | - | 2019-10-09 14:17:14 | Deep Dive |