Refine your search

4 vulnerabilities found for BIND Supported Preview Edition by ISC

CERTFR-2025-AVI-0596
Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans ISC BIND. Elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données et un contournement de la politique de sécurité.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products
Vendor Product Description
ISC BIND Bind versions 9.20.x antérieures à 9.20.11
ISC BIND Supported Preview Edition BIND Supported Preview Edition versions 9.20.x antérieures à 9.20.11-S1
ISC BIND Bind versions 9.21.x antérieures à 9.21.10
ISC BIND Supported Preview Edition BIND Supported Preview Edition versions antérieures à 9.18.38-S1
References

Show details on source website


{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Bind versions 9.20.x ant\u00e9rieures \u00e0 9.20.11",
      "product": {
        "name": "BIND",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    },
    {
      "description": "BIND Supported Preview Edition versions 9.20.x ant\u00e9rieures \u00e0 9.20.11-S1",
      "product": {
        "name": "BIND Supported Preview Edition",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    },
    {
      "description": "Bind versions 9.21.x ant\u00e9rieures \u00e0 9.21.10",
      "product": {
        "name": "BIND",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    },
    {
      "description": "BIND Supported Preview Edition versions ant\u00e9rieures \u00e0 9.18.38-S1",
      "product": {
        "name": "BIND Supported Preview Edition",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-40777",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40777"
    },
    {
      "name": "CVE-2025-40776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40776"
    }
  ],
  "initial_release_date": "2025-07-17T00:00:00",
  "last_revision_date": "2025-07-17T00:00:00",
  "links": [],
  "reference": "CERTFR-2025-AVI-0596",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-07-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans ISC BIND. Elles permettent \u00e0 un attaquant de provoquer une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et un contournement de la politique de s\u00e9curit\u00e9.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans ISC BIND",
  "vendor_advisories": [
    {
      "published_at": "2025-07-16",
      "title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2025-40776",
      "url": "https://kb.isc.org/v1/docs/cve-2025-40776"
    },
    {
      "published_at": "2025-07-16",
      "title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2025-40777",
      "url": "https://kb.isc.org/v1/docs/cve-2025-40777"
    }
  ]
}

CERTFR-2025-AVI-0092
Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans ISC BIND. Elles permettent à un attaquant de provoquer un déni de service à distance.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products
Vendor Product Description
ISC BIND BIND versions antérieures à 9.18.33
ISC BIND BIND versions 9.21.x antérieures à 9.21.4
ISC BIND BIND versions 9.20.x antérieures à 9.20.5
ISC BIND Supported Preview Edition BIND Supported Preview Edition versions antérieures à 9.18.33-S1
References

Show details on source website


{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "BIND versions ant\u00e9rieures \u00e0 9.18.33",
      "product": {
        "name": "BIND",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    },
    {
      "description": "BIND versions 9.21.x ant\u00e9rieures \u00e0 9.21.4",
      "product": {
        "name": "BIND",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    },
    {
      "description": "BIND versions 9.20.x ant\u00e9rieures \u00e0 9.20.5",
      "product": {
        "name": "BIND",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    },
    {
      "description": "BIND Supported Preview Edition versions ant\u00e9rieures \u00e0 9.18.33-S1",
      "product": {
        "name": "BIND Supported Preview Edition",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-11187",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-11187"
    },
    {
      "name": "CVE-2024-12705",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-12705"
    }
  ],
  "initial_release_date": "2025-02-04T00:00:00",
  "last_revision_date": "2025-02-04T00:00:00",
  "links": [],
  "reference": "CERTFR-2025-AVI-0092",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-02-04T00:00:00.000000"
    },
    {
      "description": "Retrait de la vuln\u00e9rabilit\u00e9 CVE-2024-28872 et modification des dates des bulletins \u00e9diteur.",
      "revision_date": "2025-02-04T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans ISC BIND. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans ISC BIND",
  "vendor_advisories": [
    {
      "published_at": "2025-01-29",
      "title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2024-12705",
      "url": "https://kb.isc.org/v1/docs/cve-2024-12705"
    },
    {
      "published_at": "2025-01-29",
      "title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2024-11187",
      "url": "https://kb.isc.org/v1/docs/cve-2024-11187"
    }
  ]
}

CERTFR-2025-AVI-0081
Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans ISC BIND. Elles permettent à un attaquant de provoquer un déni de service à distance.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products
Vendor Product Description
ISC BIND BIND versions 9.1x antérieures à 9.18.33
ISC BIND BIND versions 9.21.x antérieures à 9.21.4
ISC BIND BIND versions 9.20.x antérieures à 9.20.5
ISC BIND Supported Preview Edition BIND Supported Preview Edition versions postérieures à 9.11.37-S1 antérieures à 9.18.33-S1
References
Bulletin de sécurité ISC cve-2024-12705 2025-01-29 vendor-advisory
Bulletin de sécurité ISC cve-2024-11187 2025-01-29 vendor-advisory

Show details on source website


{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "BIND versions 9.1x ant\u00e9rieures \u00e0 9.18.33",
      "product": {
        "name": "BIND",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    },
    {
      "description": "BIND versions 9.21.x ant\u00e9rieures \u00e0 9.21.4",
      "product": {
        "name": "BIND",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    },
    {
      "description": "BIND versions 9.20.x ant\u00e9rieures \u00e0 9.20.5",
      "product": {
        "name": "BIND",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    },
    {
      "description": "BIND Supported Preview Edition versions post\u00e9rieures \u00e0 9.11.37-S1 ant\u00e9rieures \u00e0 9.18.33-S1",
      "product": {
        "name": "BIND Supported Preview Edition",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-11187",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-11187"
    },
    {
      "name": "CVE-2024-12705",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-12705"
    }
  ],
  "initial_release_date": "2025-01-30T00:00:00",
  "last_revision_date": "2025-01-30T00:00:00",
  "links": [],
  "reference": "CERTFR-2025-AVI-0081",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-01-30T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans ISC BIND. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans ISC BIND",
  "vendor_advisories": [
    {
      "published_at": "2025-01-29",
      "title": "Bulletin de s\u00e9curit\u00e9 ISC cve-2024-12705",
      "url": "https://kb.isc.org/v1/docs/cve-2024-12705"
    },
    {
      "published_at": "2025-01-29",
      "title": "Bulletin de s\u00e9curit\u00e9 ISC cve-2024-11187",
      "url": "https://kb.isc.org/v1/docs/cve-2024-11187"
    }
  ]
}

CERTFR-2024-AVI-0618
Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans ISC BIND. Elles permettent à un attaquant de provoquer un déni de service à distance.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products
Vendor Product Description
ISC BIND BIND versions 9.19.x antérieures à 9.20.0
ISC BIND BIND versions 9.11.x à 9.18.x antérieures à 9.18.28
ISC BIND Supported Preview Edition BIND Supported Preview Edition versions 9.11.x à 9.18.x antérieures à 9.18.28-S1
References

Show details on source website


{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "BIND versions 9.19.x ant\u00e9rieures \u00e0 9.20.0",
      "product": {
        "name": "BIND",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    },
    {
      "description": "BIND versions 9.11.x \u00e0 9.18.x ant\u00e9rieures \u00e0 9.18.28",
      "product": {
        "name": "BIND",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    },
    {
      "description": "BIND Supported Preview Edition versions 9.11.x \u00e0 9.18.x ant\u00e9rieures \u00e0 9.18.28-S1",
      "product": {
        "name": "BIND Supported Preview Edition",
        "vendor": {
          "name": "ISC",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-4076",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-4076"
    },
    {
      "name": "CVE-2024-1975",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-1975"
    },
    {
      "name": "CVE-2024-0760",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-0760"
    },
    {
      "name": "CVE-2024-1737",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-1737"
    }
  ],
  "initial_release_date": "2024-07-24T00:00:00",
  "last_revision_date": "2024-07-24T00:00:00",
  "links": [],
  "reference": "CERTFR-2024-AVI-0618",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-07-24T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans ISC BIND. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans ISC BIND",
  "vendor_advisories": [
    {
      "published_at": "2024-07-23",
      "title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2024-4076",
      "url": "https://kb.isc.org/v1/docs/cve-2024-4076"
    },
    {
      "published_at": "2024-07-23",
      "title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2024-1737",
      "url": "https://kb.isc.org/v1/docs/cve-2024-1737"
    },
    {
      "published_at": "2024-07-23",
      "title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2024-0760",
      "url": "https://kb.isc.org/v1/docs/cve-2024-0760"
    },
    {
      "published_at": "2024-07-23",
      "title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2024-1975",
      "url": "https://kb.isc.org/v1/docs/cve-2024-1975"
    }
  ]
}