Nic Knot_resolver
14 CVEs affecting Nic Knot_resolver. Latest disclosed: 2024-02-14. Critical: 0, High: 10.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-50387 | High | 7.5 | 2024-02-14 | Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumpti… |
CVE-2023-46317 | High | 7.5 | 2023-10-22 | Knot Resolver before 5.7.0 performs many TCP reconnections upon receiving certain nonsensical responses from servers. |
CVE-2023-26249 | High | 7.5 | 2023-02-21 | Knot Resolver before 5.6.0 enables attackers to consume its resources, launching amplification attacks and potentially causing a denial of service. Specificall… |
CVE-2022-40188 | High | 7.5 | 2022-09-23 | Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service (CPU consumption) because of algorithmic complexity. During an attack, an autho… |
CVE-2021-40083 | High | 7.5 | 2021-08-25 | Knot Resolver before 5.3.2 is prone to an assertion failure, triggerable by a remote attacker in an edge case (NSEC3 with too many iterations used for a positi… |
CVE-2018-1110 | High | 7.5 | 2021-03-30 | A flaw was found in knot-resolver before version 2.3.0. Malformed DNS messages may cause denial of service. |
CVE-2020-12667 | High | 7.5 | 2020-05-19 | Knot Resolver before 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an "NXNSAttack" issue. This is trigger… |
CVE-2019-19331 | High | 7.5 | 2019-12-16 | knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be proces… |
CVE-2019-10191 | High | 7.5 | 2019-07-16 | A vulnerability was discovered in DNS resolver of knot resolver before version 4.1.0 which allows remote attackers to downgrade DNSSEC-secure domains to DNSSEC… |
CVE-2019-10190 | High | 7.5 | 2019-07-16 | A vulnerability was discovered in DNS resolver component of knot resolver through version 3.2.0 before 4.1.0 which allows remote attackers to bypass DNSSEC val… |
CVE-2018-10920 | Medium | 6.8 | 2018-08-02 | Improper input validation bug in DNS resolver component of Knot Resolver before 2.4.1 allows remote attacker to poison cache. |
CVE-2013-5661 | Medium | 5.9 | 2019-11-05 | Cache Poisoning issue exists in DNS Response Rate Limiting. |
CVE-2022-32983 | Medium | 5.3 | 2022-06-20 | Knot Resolver through 5.5.1 may allow DNS cache poisoning when there is an attempt to limit forwarding actions by filters. |
CVE-2018-1000002 | Low | 3.7 | 2018-01-22 | Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in man-in-the-middle position to deny exis… |