cbcvebase.
CVE-2011-1922
published 2011-05-31

CVE-2011-1922: daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a…

PriorityP421medium4.3CVSS 2.0
AVNACMAuNCNINAP
EPSS
7.08%
93.4th percentile
daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DNS request that triggers improper error handling.

Affected

27 ranges· showing 25
VendorProductVersion rangeFixed in
debianunbound< unbound 1.4.10-1 (bookworm)unbound 1.4.10-1 (bookworm)
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound
nlnetlabsunbound>= 0 < 1.4.10-11.4.10-1
nlnetlabsunbound>= 0 < 1.4.10-11.4.10-1

CVSS provenance

nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM
vendor_debian4.3LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.