All 10 CVE vulnerabilities found in Unbound, with AI-generated Chinese analysis, references, and POCs.
Vendor: NLnet Labs
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-11411 | Possible domain hijacking via promiscuous records in the authority section CWE-349 | 7.5AI | HighAI | 2025-10-22 |
| CVE-2025-5994 | Cache poisoning via the ECS-enabled Rebirthday Attack CWE-349 | 5.3 | - | 2025-07-16 |
| CVE-2024-8508 | Unbounded name compression could lead to Denial of Service CWE-606 | 5.3 | Medium | 2024-10-03 |
| CVE-2024-1931 | Denial of service when trimming EDE text on positive replies CWE-835 | 7.5 | High | 2024-03-07 |
| CVE-2022-3204 | NRDelegation Attack | 7.5 | - | 2022-09-26 |
| CVE-2022-30699 | Novel "ghost domain names" attack by updating almost expired delegation information | 6.5 | - | 2022-08-01 |
| CVE-2022-30698 | Novel "ghost domain names" attack by introducing subdomain delegations | 6.5 | - | 2022-08-01 |
| CVE-2020-28935 | Local symlink attack in Unbound and NSD CWE-59 | 7.8 | - | 2020-12-07 |
| CVE-2020-10772 | Unbound 资源管理错误漏洞 CWE-406 | 7.5 | - | 2020-11-27 |
| CVE-2017-15105 | Unbound 安全漏洞 CWE-358 | 5.3 | - | 2018-01-23 |
All 10 known CVE vulnerabilities affecting Unbound with full Chinese analysis, references, and POCs where available.