dns
54 articles with this tag
HIGH
MEDIUM
MEDIUM
HIGH
HIGH
HIGH
HIGH
MEDIUM
HIGH
MEDIUM
LOW
LOW
MEDIUM
MEDIUM
MEDIUM
MEDIUM
HIGH
MEDIUM
MEDIUM
HIGH
HIGH
INFO
LOW
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
LOW
HIGH
HIGH
INFO
HIGH
INFO
HIGH
HIGH
HIGH
INFO
INFO
MEDIUM
MEDIUM
MEDIUM
HIGH
HIGH
MEDIUM
HIGH
MEDIUM
INFO
INFO
MEDIUM
MEDIUM
MEDIUM
HIGH
‘Underminr’ Vulnerability Lets Attackers Hide Malicious Connections Behind Trusted Domains
CVE-2026-5947 SIG(0) validation during query flood may lead to undefined behavior
CVE-2026-5950 Unbounded resend loop in BIND 9 resolver
CVE-2026-5946 Invalid handling of CLASS != IN
CVE-2026-3593 Heap use-after-free vulnerability in BIND 9 DNS-over-HTTPS implementation
CVE-2026-3039 BIND 9 server memory exhaustion during GSS-API TKEY negotiation
USN-8293-1: Bind vulnerabilities
Multiples vulnérabilités dans ISC BIND (21 mai 2026)
CVE-2026-42944 Heap overflow with multiple NSID, COOKIE, PADDING EDNS options
CVE-2026-40622 Another 'ghost domain names' attack variant
CVE-2026-42534 Jostle logic bypass degrades resolution performance
CVE-2026-41292 Long list of incoming EDNS options degrades performance
CVE-2026-42923 Degradation of service with unbounded NSEC3 hash calculations
CVE-2026-44608 Use after free and crash under special conditions in RPZ code
CVE-2026-42960 Possible cache poisoning via promiscuous records for the authority section
Multiples vulnérabilités dans ISC BIND (20 mai 2026)
RHSA-2026:18786: Important: bind security update
RHSA-2026:18931: Moderate: unbound security update
CVE-2026-42304 Twisted: Denial of Service (DoS) in twisted.names via Crafted DNS Compression Pointer Chains
Six new dnsmasq vulnerabilities open the door to DNS cache poisoning, local root
RHSA-2026:15890: Important: bind security update
CVE-2026-6238 Buffer overread in ns_printrrf with corrupted RDATA field
CVE-2026-5435 Potential buffer overflow in ns_sprintrrf TSIG handling path
DSA-6233-1 pdns - security update
DSA-6234-1 pdns-recursor - security update
DSA-6235-1 dnsdist - security update
RHSA-2026:11372: Important: bind security update
RHSA-2026:11371: Important: bind security update
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse
CVE-2026-1519 Excessive NSEC3 iterations cause high CPU load during insecure delegation validation
Russia's Fancy Bear still attacking routers to boost fake sites, NCSC warns
Russia Hacked Routers to Steal Microsoft Office Tokens
Our ongoing commitment to privacy for the 1.1.1.1 public DNS resolver
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse
Week in review: NIST updates DNS security guidance, compromised LiteLLM PyPI packages
DSA-6181-1 bind9 - security update
BIND Updates Patch High-Severity Vulnerabilities
[NEU] [mittel] Internet Systems Consortium BIND: Mehrere Schwachstellen
NIST updates its DNS security guidance for the first time in over a decade
The one BIG mistake you are making with DNS security today
The one BIG mistake you are making with DNS security today
AWS Bedrock’s ‘isolated’ sandbox comes with a DNS escape hatch
Security Flaw in AWS Bedrock Code Interpreter Raises Alarms
[UPDATE] [mittel] Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service
Hackers Exploit .arpa and IPv6 Infrastructure to Evade Phishing Defenses
Hacker abusing .arpa domain to evade phishing detection, says Infoblox
Internet Infrastructure TLD .arpa Abused in Phishing Attacks
Hackers abuse .arpa DNS and ipv6 to evade phishing defenses
UK govermnent's Vulnerability Monitoring System is working - fixes flow far faster
Is It Always DNS? Wireshark Packet Analysis
Microsoft Warns of ClickFix Attack Abusing DNS Lookups
New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS
[UPDATE] [mittel] Unbound: Schwachstelle ermöglicht Manipulation von Dateien
[UPDATE] [hoch] Internet Systems Consortium BIND: Mehrere Schwachstellen