cbcvebase.

Isc Bind9 vulnerabilities

128 known vulnerabilities affecting isc/bind9.

Total CVEs
128
CISA KEV
0
Public exploits
7
Exploited in wild
4
Severity breakdown
CRITICAL1HIGH73MEDIUM47LOW7

Vulnerabilities

Page 1 of 7
CVE-2016-2776P1HIGHCVSS 7.5ExploitedPoC≥ 0, < 1:9.10.3.dfsg.P4-112016-09-28
CVE-2016-2776 [HIGH] CVE-2016-2776: buffer buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query.
osv
CVE-2015-5477P2HIGHCVSS 7.1ExploitedPoC≥ 0, < 1:9.9.5.dfsg-3ubuntu0.42015-07-28
CVE-2015-5477 [HIGH] bind9 vulnerabilities bind9 vulnerabilities Jonathan Foote discovered that Bind incorrectly handled certain TKEY queries. A remote attacker could use this issue with a specially crafted packet to cause Bind to crash, resulting in a denial of service. (CVE-2015-5477) Pories Ediansyah discovered that Bind incorrectly handled certain configurations involving DNS64. A remote attacker could use this issue with a specially crafted query to cause Bind to crash, resulting in a den
osv
CVE-2009-0696P2MEDIUMCVSS 4.3ExploitedPoC≥ 0, < 1:9.6.1.dfsg.P1-12009-07-29
CVE-2009-0696 [MEDIUM] CVE-2009-0696: The dns_db_findrdataset function in db The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 before 9.4.3-P3, 9.5 before 9.5.1-P3, and 9.6 before 9.6.1-P1, when configured as a master server, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an ANY record in the prerequisite section of a crafted dynamic update message.
osv
CVE-2013-4854P2HIGHCVSS 7.8Exploited≥ 0, < 1:9.8.4.dfsg.P1-6+nmu32013-07-29
CVE-2013-4854 [HIGH] CVE-2013-4854: The RFC 5011 implementation in rdata The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2
osv
CVE-2008-1447P2MEDIUMCVSS 6.8PoC≥ 0, < 1:9.5.0.dfsg-52008-07-08
CVE-2008-1447 [MEDIUM] CVE-2008-1447: The DNS protocol, as implemented in (1) BIND 8 and 9 before 9 The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS
osv
CVE-2020-8617P2MEDIUMCVSS 5.9PoCv9.0.0 -> 9.11.18, 9.12.0 -> 9.12.4-P2, 9.14.0 -> 9.14.11, 9.16.0 -> 9.16.2, and releases 9.17.0 -> 9.17.1 of the 9.17 experimental development branch. All releases in the obsolete 9.13 and 9.15 development branches. All releases of BIND Supported Preview Edition from 9.9.3-S1 -> 9.11.18-S12020-05-19
CVE-2020-8617 [MEDIUM] CWE-617 CVE-2020-8617: Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an incon Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an inconsistent state if the attacker knows (or successfully guesses) the name of a TSIG key used by the server. Since BIND, by default, configures a local session key even on servers whose configuration does not otherwise make use of it, almost all current BIN
nvdosv
CVE-2021-25216P2CRITICALCVSS 9.8vOpen Source Branches 9.5 though 9.11 9.5.0 through versions before 9.11.31vOpen Source Branches 9.12 though 9.16 9.12.0 through versions before 9.16.14+3 more2021-04-29
CVE-2021-25216 [CRITICAL] CWE-125 CVE-2021-25216: In BIND 9.5.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.11.3-S1 -> 9.11.29-S1 and 9.16.8-S1 In BIND 9.5.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.11.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a
nvdosv
CVE-2020-8625P2HIGHCVSS 8.1vOpen Source Branches 9.5 though 9.11 9.5.0 through versions before 9.11.28vOpen Source Branches 9.12 though 9.16 9.12.0 through versions before 9.16.12+3 more2021-02-17
CVE-2020-8625 [HIGH] CWE-120 CVE-2020-8625: BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TS BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the tkey-gssapi-keytab or tkey-gssapi-credentialconfiguration option
nvdosv
CVE-2023-50387P3HIGHCVSS 7.5≥ 0, < 1:9.9.5.dfsg-3ubuntu0.19+esm12≥ 0, < 1:9.10.3.dfsg.P4-8ubuntu1.19+esm8+1 more2024-04-09
CVE-2023-50387 [HIGH] bind9 vulnerabilities bind9 vulnerabilities Elias Heftrig, Haya Schulmann, Niklas Vogel, and Michael Waidner discovered that Bind icorrectly handled validating DNSSEC messages. A remote attacker could possibly use this issue to cause Bind to consume resources, leading to a denial of service. (CVE-2023-50387) It was discovered that Bind incorrectly handled preparing an NSEC3 closest encloser proof. A remote attacker could possibly use this issue to cause Bind to consume re
osv
CVE-2023-50868P3HIGHCVSS 7.5≥ 0, < 1:9.16.48-1≥ 0, < 1:9.18.24-1+1 more2024-02-14
CVE-2023-50868 [HIGH] CVE-2023-50868: The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of ser The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random subdomain attack, aka the "NSEC3" issue. The RFC 5155 specification implies that a
osv
CVE-2018-5740P2HIGHCVSS 7.5≥ 0, < 1:9.11.4.P1+dfsg-12019-01-16
CVE-2018-5740 [HIGH] CVE-2018-5740: "deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potentia "deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, to experience an
osv
CVE-2016-1286P3HIGHCVSS 8.6≥ 0, < 1:9.10.3.dfsg.P4-62016-03-09
CVE-2016-1286 [HIGH] CVE-2016-1286: named in ISC BIND 9 named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted signature record for a DNAME record, related to db.c and resolver.c.
osv
CVE-2022-3736P3HIGHCVSS 7.5≥ 0, < 1:9.16.37-1~deb11u1≥ 0, < 1:9.18.11-12023-01-26
CVE-2022-3736 [HIGH] CVE-2022-3736: BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the r BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a positive integer, and the resolver receives an RRSIG query. This issue affects BIND 9 versions 9.16.12 through 9.16.36, 9.18.0 through 9.18.10, 9.19.0 through 9.19.8, and 9.16.12-S1 through
osv
CVE-2006-0987P4MEDIUMCVSS 5.0PoC≥ 0, < 1:9.4.0-12006-03-03
CVE-2006-0987 [MEDIUM] CVE-2006-0987: The default configuration of ISC BIND before 9 The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service (traffic amplification) via DNS queries with spoofed source IP addresses.
osv
CVE-2014-8500P3HIGHCVSS 7.8≥ 0, < 1:9.9.5.dfsg-72014-12-11
CVE-2014-8500 [HIGH] CVE-2014-8500: ISC BIND 9 ISC BIND 9.0.x through 9.8.x, 9.9.0 through 9.9.6, and 9.10.0 through 9.10.1 does not limit delegation chaining, which allows remote attackers to cause a denial of service (memory consumption and named crash) via a large or infinite number of referrals.
osv
CVE-2017-3145P3HIGHCVSS 7.5≥ 0, < 1:9.11.2.P1-12019-01-16
CVE-2017-3145 [HIGH] CVE-2017-3145: BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free error that can trigg BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free error that can trigger an assertion failure and crash in named. Affects BIND 9.0.0 to 9.8.x, 9.9.0 to 9.9.11, 9.10.0 to 9.10.6, 9.11.0 to 9.11.2, 9.9.3-S1 to 9.9.11-S1, 9.10.5-S1 to 9
osv
CVE-2016-8864P3HIGHCVSS 7.5≥ 0, < 1:9.10.3.dfsg.P4-112016-11-02
CVE-2016-8864 [HIGH] CVE-2016-8864: named in ISC BIND 9 named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNAME record in the answer section of a response to a recursive query, related to db.c and resolver.c.
osv
CVE-2016-9131P3HIGHCVSS 7.5≥ 0, < 1:9.10.3.dfsg.P4-112017-01-12
CVE-2016-9131 [HIGH] CVE-2016-9131: named in ISC BIND 9 named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed response to an RTYPE ANY query.
osv
CVE-2016-1285P3MEDIUMCVSS 6.8≥ 0, < 1:9.10.3.dfsg.P4-62016-03-09
CVE-2016-1285 [MEDIUM] CVE-2016-1285: named in ISC BIND 9 named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 does not properly handle DNAME records when parsing fetch reply messages, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed packet to the rndc (aka control channel) interface, related to alist.c and sexpr.c.
osv
CVE-2015-4620P3HIGHCVSS 7.8≥ 0, < 1:9.9.5.dfsg-102015-07-08
CVE-2015-4620 [HIGH] CVE-2015-4620: name name.c in named in ISC BIND 9.7.x through 9.9.x before 9.9.7-P1 and 9.10.x before 9.10.2-P2, when configured as a recursive resolver with DNSSEC validation, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) by constructing crafted zone data and then making a query for a name in that zone.
osv