Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DNS-over-HTTPS implementation suffers from multiple issues under heavy query load
Vulnerability Description
Clients using DNS-over-HTTPS (DoH) can exhaust a DNS resolver's CPU and/or memory by flooding it with crafted valid or invalid HTTP/2 traffic. This issue affects BIND 9 versions 9.18.0 through 9.18.32, 9.20.0 through 9.20.4, 9.21.0 through 9.21.3, and 9.18.11-S1 through 9.18.32-S1.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
不加限制或调节的资源分配
Vulnerability Title
ISC BIND 安全漏洞
Vulnerability Description
ISC BIND是ISC开源的一套实现了DNS协议的开源软件。 ISC BIND 9存在安全漏洞,该漏洞源于使用 DNS-over-HTTPS (DoH) 的客户端可以通过向 DNS 解析器中注入精心设计的有效或无效的 HTTP/2 流量来耗尽其 CPU 和/或内存。
CVSS Information
N/A
Vulnerability Type
N/A