What is CVE-2015-5722?

CVE-2015-5722 is a vulnerability in Apple Mac_os_x_server, classified under Improper Input Validation. Published 2015-09-05.

Is CVE-2015-5722 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Improper input validation in Apple Mac_os_x_server

CVE-2015-5722

buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) by creating a zone containing a malformed DNSSEC key and issuing a query…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.659 (98.5th percentile) — read the EPSS interpretation.

Affected products

Apple Mac_os_x_server — versions 5.0.15
Isc Bind
N/a — versions n/a

Weakness classification (CWE)

CWE-20 — Improper Input Validation

Public proof-of-concept exploits

References

USN-2728-1 (x_refsource_UBUNTU, vendor-advisory)
cve@mitre.org (x_refsource_CONFIRM)
openSUSE-SU-2015:1667 (vendor-advisory, x_refsource_SUSE)
FEDORA-2015-15041 (x_refsource_FEDORA, vendor-advisory)
RHSA-2015:1706 (x_refsource_REDHAT, vendor-advisory)
APPLE-SA-2015-10-21-8 (vendor-advisory, x_refsource_APPLE)
cve@mitre.org (x_refsource_CONFIRM)
FEDORA-2015-14954 (x_refsource_FEDORA, vendor-advisory)
cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
SSRT102248 (x_refsource_HP, vendor-advisory)

Frequently asked questions

What is CVE-2015-5722?: CVE-2015-5722 is a vulnerability in Apple Mac_os_x_server, classified under Improper Input Validation. Published 2015-09-05.
Is CVE-2015-5722 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.