cbcvebase.
CVE-2019-14513
published 2019-08-01

CVE-2019-14513: Improper bounds checking in Dnsmasq before 2.76 allows an attacker controlled DNS server to send large DNS packets that result in a read operation beyond the…

PriorityP338high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
1.70%
74.4th percentile
Improper bounds checking in Dnsmasq before 2.76 allows an attacker controlled DNS server to send large DNS packets that result in a read operation beyond the buffer allocated for the packet, a different vulnerability than CVE-2017-14491.

Affected

8 ranges
VendorProductVersion rangeFixed in
debiandebian_linux
debiandnsmasq< dnsmasq 2.76-1 (bookworm)dnsmasq 2.76-1 (bookworm)
thekelleysdnsmasq< 2.762.76
thekelleysdnsmasq>= 0 < 2.76-12.76-1
thekelleysdnsmasq>= 0 < 2.76-12.76-1
thekelleysdnsmasq>= 0 < 2.76-12.76-1
thekelleysdnsmasq>= 0 < 2.76-12.76-1
thekelleysdnsmasq>= 0 < 2.75-1ubuntu0.16.04.102.75-1ubuntu0.16.04.10

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv9.8CRITICAL
vendor_debian9.8CRITICAL
vendor_redhat9.8CRITICAL
vendor_ubuntu7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.