Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-0760 (GCVE-0-2024-0760)
Vulnerability from cvelistv5
Published
2024-07-23 14:26
Modified
2025-02-13 17:27
Severity ?
VLAI Severity ?
EPSS score ?
Summary
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack.
This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.
References
Impacted products
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unaffected",
"product": "bind",
"vendor": "isc",
"versions": [
{
"lessThanOrEqual": "9.18.27",
"status": "affected",
"version": "9.18.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.19.24",
"status": "affected",
"version": "9.19.0",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.18.27-s1",
"status": "affected",
"version": "9.18.11-s1",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-0760",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-23T16:02:34.286057Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-770",
"description": "CWE-770 Allocation of Resources Without Limits or Throttling",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-08-13T20:36:51.162Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T18:18:18.515Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://security.netapp.com/advisory/ntap-20240731-0004/"
},
{
"name": "CVE-2024-0760",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://kb.isc.org/docs/cve-2024-0760"
},
{
"tags": [
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2024/07/23/1"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "BIND 9",
"vendor": "ISC",
"versions": [
{
"lessThanOrEqual": "9.18.27",
"status": "affected",
"version": "9.18.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.19.24",
"status": "affected",
"version": "9.19.0",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.18.27-S1",
"status": "affected",
"version": "9.18.11-S1",
"versionType": "custom"
}
]
}
],
"datePublic": "2024-07-23T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. \nThis issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1."
}
],
"exploits": [
{
"lang": "en",
"value": "This flaw was discovered in internal testing. We are not aware of any active exploits."
}
],
"impacts": [
{
"descriptions": [
{
"lang": "en",
"value": "The server can become unresponsive until sometime after the attack ends."
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-07-31T11:05:57.323Z",
"orgId": "404fd4d2-a609-4245-b543-2c944a302a22",
"shortName": "isc"
},
"references": [
{
"name": "CVE-2024-0760",
"tags": [
"vendor-advisory"
],
"url": "https://kb.isc.org/docs/cve-2024-0760"
},
{
"url": "http://www.openwall.com/lists/oss-security/2024/07/23/1"
},
{
"url": "http://www.openwall.com/lists/oss-security/2024/07/31/2"
}
],
"solutions": [
{
"lang": "en",
"value": "Upgrade to the patched release most closely related to your current version of BIND 9: 9.18.28, 9.20.0, or 9.18.28-S1."
}
],
"source": {
"discovery": "INTERNAL"
},
"title": "A flood of DNS messages over TCP may make the server unstable",
"workarounds": [
{
"lang": "en",
"value": "No workarounds known."
}
]
}
},
"cveMetadata": {
"assignerOrgId": "404fd4d2-a609-4245-b543-2c944a302a22",
"assignerShortName": "isc",
"cveId": "CVE-2024-0760",
"datePublished": "2024-07-23T14:26:54.983Z",
"dateReserved": "2024-01-19T20:26:52.962Z",
"dateUpdated": "2025-02-13T17:27:19.172Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-0760\",\"sourceIdentifier\":\"security-officer@isc.org\",\"published\":\"2024-07-23T15:15:03.520\",\"lastModified\":\"2024-11-21T08:47:18.850\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. \\nThis issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.\"},{\"lang\":\"es\",\"value\":\"Un cliente malintencionado puede enviar muchos mensajes DNS a trav\u00e9s de TCP, lo que podr\u00eda provocar que el servidor se vuelva inestable mientras el ataque est\u00e1 en curso. El servidor puede recuperarse una vez que cese el ataque. El uso de ACL no mitigar\u00e1 el ataque. Este problema afecta a las versiones 9.18.1 a 9.18.27, 9.19.0 a 9.19.24 y 9.18.11-S1 a 9.18.27-S1 de BIND 9.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-officer@isc.org\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-770\"}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2024/07/23/1\",\"source\":\"security-officer@isc.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/07/31/2\",\"source\":\"security-officer@isc.org\"},{\"url\":\"https://kb.isc.org/docs/cve-2024-0760\",\"source\":\"security-officer@isc.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/07/23/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://kb.isc.org/docs/cve-2024-0760\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20240731-0004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://security.netapp.com/advisory/ntap-20240731-0004/\"}, {\"url\": \"https://kb.isc.org/docs/cve-2024-0760\", \"name\": \"CVE-2024-0760\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/07/23/1\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-01T18:18:18.515Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-0760\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-07-23T16:02:34.286057Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\"], \"vendor\": \"isc\", \"product\": \"bind\", \"versions\": [{\"status\": \"affected\", \"version\": \"9.18.1\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.18.27\"}, {\"status\": \"affected\", \"version\": \"9.19.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.19.24\"}, {\"status\": \"affected\", \"version\": \"9.18.11-s1\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.18.27-s1\"}], \"defaultStatus\": \"unaffected\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-770\", \"description\": \"CWE-770 Allocation of Resources Without Limits or Throttling\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-23T16:07:47.752Z\"}}], \"cna\": {\"title\": \"A flood of DNS messages over TCP may make the server unstable\", \"source\": {\"discovery\": \"INTERNAL\"}, \"impacts\": [{\"descriptions\": [{\"lang\": \"en\", \"value\": \"The server can become unresponsive until sometime after the attack ends.\"}]}], \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"ISC\", \"product\": \"BIND 9\", \"versions\": [{\"status\": \"affected\", \"version\": \"9.18.1\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.18.27\"}, {\"status\": \"affected\", \"version\": \"9.19.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.19.24\"}, {\"status\": \"affected\", \"version\": \"9.18.11-S1\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.18.27-S1\"}], \"defaultStatus\": \"unaffected\"}], \"exploits\": [{\"lang\": \"en\", \"value\": \"This flaw was discovered in internal testing. We are not aware of any active exploits.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"Upgrade to the patched release most closely related to your current version of BIND 9: 9.18.28, 9.20.0, or 9.18.28-S1.\"}], \"datePublic\": \"2024-07-23T00:00:00.000Z\", \"references\": [{\"url\": \"https://kb.isc.org/docs/cve-2024-0760\", \"name\": \"CVE-2024-0760\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/07/23/1\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/07/31/2\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"No workarounds known.\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. \\nThis issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.\"}], \"providerMetadata\": {\"orgId\": \"404fd4d2-a609-4245-b543-2c944a302a22\", \"shortName\": \"isc\", \"dateUpdated\": \"2024-07-31T11:05:57.323Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-0760\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-13T17:27:19.172Z\", \"dateReserved\": \"2024-01-19T20:26:52.962Z\", \"assignerOrgId\": \"404fd4d2-a609-4245-b543-2c944a302a22\", \"datePublished\": \"2024-07-23T14:26:54.983Z\", \"assignerShortName\": \"isc\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
opensuse-su-2024:14217-1
Vulnerability from csaf_opensuse
Published
2024-07-26 00:00
Modified
2024-07-26 00:00
Summary
bind-9.20.0-1.1 on GA media
Notes
Title of the patch
bind-9.20.0-1.1 on GA media
Description of the patch
These are all security issues fixed in the bind-9.20.0-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-14217
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "bind-9.20.0-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the bind-9.20.0-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-14217",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_14217-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-0760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-0760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1975 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1975/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-4076 page",
"url": "https://www.suse.com/security/cve/CVE-2024-4076/"
}
],
"title": "bind-9.20.0-1.1 on GA media",
"tracking": {
"current_release_date": "2024-07-26T00:00:00Z",
"generator": {
"date": "2024-07-26T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:14217-1",
"initial_release_date": "2024-07-26T00:00:00Z",
"revision_history": [
{
"date": "2024-07-26T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.0-1.1.aarch64",
"product": {
"name": "bind-9.20.0-1.1.aarch64",
"product_id": "bind-9.20.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-doc-9.20.0-1.1.aarch64",
"product": {
"name": "bind-doc-9.20.0-1.1.aarch64",
"product_id": "bind-doc-9.20.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"product": {
"name": "bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"product_id": "bind-modules-bdbhpt-9.20.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.0-1.1.aarch64",
"product": {
"name": "bind-modules-generic-9.20.0-1.1.aarch64",
"product_id": "bind-modules-generic-9.20.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.0-1.1.aarch64",
"product": {
"name": "bind-modules-ldap-9.20.0-1.1.aarch64",
"product_id": "bind-modules-ldap-9.20.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.0-1.1.aarch64",
"product": {
"name": "bind-modules-mysql-9.20.0-1.1.aarch64",
"product_id": "bind-modules-mysql-9.20.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.0-1.1.aarch64",
"product": {
"name": "bind-modules-perl-9.20.0-1.1.aarch64",
"product_id": "bind-modules-perl-9.20.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.0-1.1.aarch64",
"product": {
"name": "bind-modules-sqlite3-9.20.0-1.1.aarch64",
"product_id": "bind-modules-sqlite3-9.20.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.0-1.1.aarch64",
"product": {
"name": "bind-utils-9.20.0-1.1.aarch64",
"product_id": "bind-utils-9.20.0-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.0-1.1.ppc64le",
"product": {
"name": "bind-9.20.0-1.1.ppc64le",
"product_id": "bind-9.20.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-doc-9.20.0-1.1.ppc64le",
"product": {
"name": "bind-doc-9.20.0-1.1.ppc64le",
"product_id": "bind-doc-9.20.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"product": {
"name": "bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"product_id": "bind-modules-bdbhpt-9.20.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.0-1.1.ppc64le",
"product": {
"name": "bind-modules-generic-9.20.0-1.1.ppc64le",
"product_id": "bind-modules-generic-9.20.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.0-1.1.ppc64le",
"product": {
"name": "bind-modules-ldap-9.20.0-1.1.ppc64le",
"product_id": "bind-modules-ldap-9.20.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.0-1.1.ppc64le",
"product": {
"name": "bind-modules-mysql-9.20.0-1.1.ppc64le",
"product_id": "bind-modules-mysql-9.20.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.0-1.1.ppc64le",
"product": {
"name": "bind-modules-perl-9.20.0-1.1.ppc64le",
"product_id": "bind-modules-perl-9.20.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"product": {
"name": "bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"product_id": "bind-modules-sqlite3-9.20.0-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.0-1.1.ppc64le",
"product": {
"name": "bind-utils-9.20.0-1.1.ppc64le",
"product_id": "bind-utils-9.20.0-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.0-1.1.s390x",
"product": {
"name": "bind-9.20.0-1.1.s390x",
"product_id": "bind-9.20.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-doc-9.20.0-1.1.s390x",
"product": {
"name": "bind-doc-9.20.0-1.1.s390x",
"product_id": "bind-doc-9.20.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.0-1.1.s390x",
"product": {
"name": "bind-modules-bdbhpt-9.20.0-1.1.s390x",
"product_id": "bind-modules-bdbhpt-9.20.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.0-1.1.s390x",
"product": {
"name": "bind-modules-generic-9.20.0-1.1.s390x",
"product_id": "bind-modules-generic-9.20.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.0-1.1.s390x",
"product": {
"name": "bind-modules-ldap-9.20.0-1.1.s390x",
"product_id": "bind-modules-ldap-9.20.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.0-1.1.s390x",
"product": {
"name": "bind-modules-mysql-9.20.0-1.1.s390x",
"product_id": "bind-modules-mysql-9.20.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.0-1.1.s390x",
"product": {
"name": "bind-modules-perl-9.20.0-1.1.s390x",
"product_id": "bind-modules-perl-9.20.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.0-1.1.s390x",
"product": {
"name": "bind-modules-sqlite3-9.20.0-1.1.s390x",
"product_id": "bind-modules-sqlite3-9.20.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.0-1.1.s390x",
"product": {
"name": "bind-utils-9.20.0-1.1.s390x",
"product_id": "bind-utils-9.20.0-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.0-1.1.x86_64",
"product": {
"name": "bind-9.20.0-1.1.x86_64",
"product_id": "bind-9.20.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-doc-9.20.0-1.1.x86_64",
"product": {
"name": "bind-doc-9.20.0-1.1.x86_64",
"product_id": "bind-doc-9.20.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"product": {
"name": "bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"product_id": "bind-modules-bdbhpt-9.20.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.0-1.1.x86_64",
"product": {
"name": "bind-modules-generic-9.20.0-1.1.x86_64",
"product_id": "bind-modules-generic-9.20.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.0-1.1.x86_64",
"product": {
"name": "bind-modules-ldap-9.20.0-1.1.x86_64",
"product_id": "bind-modules-ldap-9.20.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.0-1.1.x86_64",
"product": {
"name": "bind-modules-mysql-9.20.0-1.1.x86_64",
"product_id": "bind-modules-mysql-9.20.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.0-1.1.x86_64",
"product": {
"name": "bind-modules-perl-9.20.0-1.1.x86_64",
"product_id": "bind-modules-perl-9.20.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.0-1.1.x86_64",
"product": {
"name": "bind-modules-sqlite3-9.20.0-1.1.x86_64",
"product_id": "bind-modules-sqlite3-9.20.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.0-1.1.x86_64",
"product": {
"name": "bind-utils-9.20.0-1.1.x86_64",
"product_id": "bind-utils-9.20.0-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64"
},
"product_reference": "bind-9.20.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le"
},
"product_reference": "bind-9.20.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.20.0-1.1.s390x"
},
"product_reference": "bind-9.20.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64"
},
"product_reference": "bind-9.20.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64"
},
"product_reference": "bind-doc-9.20.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le"
},
"product_reference": "bind-doc-9.20.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x"
},
"product_reference": "bind-doc-9.20.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64"
},
"product_reference": "bind-doc-9.20.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64"
},
"product_reference": "bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le"
},
"product_reference": "bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x"
},
"product_reference": "bind-modules-bdbhpt-9.20.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64"
},
"product_reference": "bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64"
},
"product_reference": "bind-modules-generic-9.20.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le"
},
"product_reference": "bind-modules-generic-9.20.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x"
},
"product_reference": "bind-modules-generic-9.20.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64"
},
"product_reference": "bind-modules-generic-9.20.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64"
},
"product_reference": "bind-modules-ldap-9.20.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le"
},
"product_reference": "bind-modules-ldap-9.20.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x"
},
"product_reference": "bind-modules-ldap-9.20.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64"
},
"product_reference": "bind-modules-ldap-9.20.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64"
},
"product_reference": "bind-modules-mysql-9.20.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le"
},
"product_reference": "bind-modules-mysql-9.20.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x"
},
"product_reference": "bind-modules-mysql-9.20.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64"
},
"product_reference": "bind-modules-mysql-9.20.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64"
},
"product_reference": "bind-modules-perl-9.20.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le"
},
"product_reference": "bind-modules-perl-9.20.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x"
},
"product_reference": "bind-modules-perl-9.20.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64"
},
"product_reference": "bind-modules-perl-9.20.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64"
},
"product_reference": "bind-modules-sqlite3-9.20.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le"
},
"product_reference": "bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x"
},
"product_reference": "bind-modules-sqlite3-9.20.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64"
},
"product_reference": "bind-modules-sqlite3-9.20.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.0-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64"
},
"product_reference": "bind-utils-9.20.0-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.0-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le"
},
"product_reference": "bind-utils-9.20.0-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.0-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x"
},
"product_reference": "bind-utils-9.20.0-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.0-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
},
"product_reference": "bind-utils-9.20.0-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-0760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-0760"
}
],
"notes": [
{
"category": "general",
"text": "A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. \nThis issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-0760",
"url": "https://www.suse.com/security/cve/CVE-2024-0760"
},
{
"category": "external",
"summary": "SUSE Bug 1228255 for CVE-2024-0760",
"url": "https://bugzilla.suse.com/1228255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-26T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-0760"
},
{
"cve": "CVE-2024-1737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1737"
}
],
"notes": [
{
"category": "general",
"text": "Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname (of any RTYPE) can suffer from degraded performance as content is being added or updated, and also when handling client queries for this name.\nThis issue affects BIND 9 versions 9.11.0 through 9.11.37, 9.16.0 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.4-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.50-S1, and 9.18.11-S1 through 9.18.27-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1737",
"url": "https://www.suse.com/security/cve/CVE-2024-1737"
},
{
"category": "external",
"summary": "SUSE Bug 1228256 for CVE-2024-1737",
"url": "https://bugzilla.suse.com/1228256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-26T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-1737"
},
{
"cve": "CVE-2024-1975",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1975"
}
],
"notes": [
{
"category": "general",
"text": "If a server hosts a zone containing a \"KEY\" Resource Record, or a resolver DNSSEC-validates a \"KEY\" Resource Record from a DNSSEC-signed domain in cache, a client can exhaust resolver CPU resources by sending a stream of SIG(0) signed requests.\nThis issue affects BIND 9 versions 9.0.0 through 9.11.37, 9.16.0 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.9.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.49-S1, and 9.18.11-S1 through 9.18.27-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1975",
"url": "https://www.suse.com/security/cve/CVE-2024-1975"
},
{
"category": "external",
"summary": "SUSE Bug 1228257 for CVE-2024-1975",
"url": "https://bugzilla.suse.com/1228257"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-26T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-1975"
},
{
"cve": "CVE-2024-4076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-4076"
}
],
"notes": [
{
"category": "general",
"text": "Client queries that trigger serving stale data and that also require lookups in local authoritative zone data may result in an assertion failure.\nThis issue affects BIND 9 versions 9.16.13 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.33-S1 through 9.11.37-S1, 9.16.13-S1 through 9.16.50-S1, and 9.18.11-S1 through 9.18.27-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-4076",
"url": "https://www.suse.com/security/cve/CVE-2024-4076"
},
{
"category": "external",
"summary": "SUSE Bug 1228258 for CVE-2024-4076",
"url": "https://bugzilla.suse.com/1228258"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:bind-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.0-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-26T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-4076"
}
]
}
suse-su-2024:2636-1
Vulnerability from csaf_suse
Published
2024-07-30 07:14
Modified
2024-07-30 07:14
Summary
Security update for bind
Notes
Title of the patch
Security update for bind
Description of the patch
This update for bind fixes the following issues:
Update to release 9.18.28
Security fixes:
- CVE-2024-0760: Fixed a flood of DNS messages over TCP may make the server unstable (bsc#1228255)
- CVE-2024-1737: Fixed BIND's database will be slow if a very large number of RRs exist at the same name (bsc#1228256)
- CVE-2024-1975: Fixed SIG(0) can be used to exhaust CPU resources (bsc#1228257)
- CVE-2024-4076: Fixed assertion failure when serving both stale cache data and authoritative zone content (bsc#1228258)
Changelog:
* Command-line options for IPv4-only (named -4) and IPv6-only
(named -6) modes are now respected for zone primaries,
also-notify, and parental-agents.
* An RPZ response’s SOA record TTL was set to 1 instead of the
SOA TTL, if add-soa was used. This has been fixed.
* When a query related to zone maintenance (NOTIFY, SOA) timed
out close to a view shutdown (triggered e.g. by rndc reload),
named could crash with an assertion failure. This has been
fixed.
* The statistics channel counters that indicated the number of
currently connected TCP IPv4/IPv6 clients were not properly
adjusted in certain failure scenarios. This has been fixed.
* Some servers that could not be reached due to EHOSTDOWN or
ENETDOWN conditions were incorrectly prioritized during server
selection. These are now properly handled as unreachable.
* On some systems the libuv call may return an error code when
sending a TCP reset for a connection, which triggers an
assertion failure in named. This error condition is now dealt
with in a more graceful manner, by logging the incident and
shutting down the connection.
* Changes to listen-on statements were ignored on reconfiguration
unless the port or interface address was changed, making it
impossible to change a related listener transport type. That
issue has been fixed.
* A bug in the keymgr code unintentionally slowed down some
DNSSEC key rollovers. This has been fixed.
* Some ISO 8601 durations were accepted erroneously, leading to
shorter durations than expected. This has been fixed
* A regression in cache-cleaning code enabled memory use to grow
significantly more quickly than before, until the configured
max-cache-size limit was reached. This has been fixed.
* Using rndc flush inadvertently caused cache cleaning to become
less effective. This could ultimately lead to the configured
max-cache-size limit being exceeded and has now been fixed.
* The logic for cleaning up expired cached DNS records was
tweaked to be more aggressive. This change helps with enforcing
max-cache-ttl and max-ncache-ttl in a timely manner.
* It was possible to trigger a use-after-free assertion when the
overmem cache cleaning was initiated. This has been fixed.
New Features:
* A new option signatures-jitter has been added to dnssec-policy
to allow signature expirations to be spread out over a period
of time.
* The statistics channel now includes counters that indicate the
number of currently connected TCP IPv4/IPv6 clients.
* Added RESOLVER.ARPA to the built in empty zones.
Feature Changes:
* DNSSEC signatures that are not valid because the current time
falls outside the signature inception and expiration dates are
skipped instead of causing an immediate validation failure.
Security Fixes:
* A malicious DNS client that sent many queries over TCP but
never read the responses could cause a server to respond slowly
or not at all for other clients. This has been fixed.
(CVE-2024-0760)
* It is possible to craft excessively large resource records
sets, which have the effect of slowing down database
processing. This has been addressed by adding a configurable
limit to the number of records that can be stored per name and
type in a cache or zone database. The default is 100, which can
be tuned with the new max-records-per-type option.
* It is possible to craft excessively large numbers of resource
record types for a given owner name, which has the effect of
slowing down database processing. This has been addressed by
adding a configurable limit to the number of records that can
be stored per name and type in a cache or zone database. The
default is 100, which can be tuned with the new
max-types-per-name option. (CVE-2024-1737)
* Validating DNS messages signed using the SIG(0) protocol (RFC
2931) could cause excessive CPU load, leading to a
denial-of-service condition. Support for SIG(0) message
validation was removed from this version of named.
(CVE-2024-1975)
* Due to a logic error, lookups that triggered serving stale data
and required lookups in local authoritative zone data could
have resulted in an assertion failure. This has been fixed.
* Potential data races were found in our DoH implementation,
related to HTTP/2 session object management and endpoints set
object management after reconfiguration. These issues have been
fixed.
* When looking up the NS records of parent zones as part of
looking up DS records, it was possible for named to trigger an
assertion failure if serve-stale was enabled. This has been
fixed. (CVE-2024-4076)
Patchnames
SUSE-2024-2636,SUSE-SLE-Module-Basesystem-15-SP6-2024-2636,SUSE-SLE-Module-Server-Applications-15-SP6-2024-2636,openSUSE-SLE-15.6-2024-2636
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for bind",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for bind fixes the following issues:\n\nUpdate to release 9.18.28\n\nSecurity fixes:\n\n- CVE-2024-0760: Fixed a flood of DNS messages over TCP may make the server unstable (bsc#1228255)\n- CVE-2024-1737: Fixed BIND\u0027s database will be slow if a very large number of RRs exist at the same name (bsc#1228256)\n- CVE-2024-1975: Fixed SIG(0) can be used to exhaust CPU resources (bsc#1228257)\n- CVE-2024-4076: Fixed assertion failure when serving both stale cache data and authoritative zone content (bsc#1228258)\n\nChangelog:\n\n * Command-line options for IPv4-only (named -4) and IPv6-only\n (named -6) modes are now respected for zone primaries,\n also-notify, and parental-agents.\n * An RPZ response\u2019s SOA record TTL was set to 1 instead of the\n SOA TTL, if add-soa was used. This has been fixed.\n * When a query related to zone maintenance (NOTIFY, SOA) timed\n out close to a view shutdown (triggered e.g. by rndc reload),\n named could crash with an assertion failure. This has been\n fixed.\n * The statistics channel counters that indicated the number of\n currently connected TCP IPv4/IPv6 clients were not properly\n adjusted in certain failure scenarios. This has been fixed.\n * Some servers that could not be reached due to EHOSTDOWN or\n ENETDOWN conditions were incorrectly prioritized during server\n selection. These are now properly handled as unreachable.\n * On some systems the libuv call may return an error code when\n sending a TCP reset for a connection, which triggers an\n assertion failure in named. This error condition is now dealt\n with in a more graceful manner, by logging the incident and\n shutting down the connection.\n * Changes to listen-on statements were ignored on reconfiguration\n unless the port or interface address was changed, making it\n impossible to change a related listener transport type. That\n issue has been fixed.\n * A bug in the keymgr code unintentionally slowed down some\n DNSSEC key rollovers. This has been fixed.\n * Some ISO 8601 durations were accepted erroneously, leading to\n shorter durations than expected. This has been fixed\n * A regression in cache-cleaning code enabled memory use to grow\n significantly more quickly than before, until the configured\n max-cache-size limit was reached. This has been fixed.\n * Using rndc flush inadvertently caused cache cleaning to become\n less effective. This could ultimately lead to the configured\n max-cache-size limit being exceeded and has now been fixed.\n * The logic for cleaning up expired cached DNS records was\n tweaked to be more aggressive. This change helps with enforcing\n max-cache-ttl and max-ncache-ttl in a timely manner.\n * It was possible to trigger a use-after-free assertion when the\n overmem cache cleaning was initiated. This has been fixed.\n New Features:\n * A new option signatures-jitter has been added to dnssec-policy\n to allow signature expirations to be spread out over a period\n of time.\n * The statistics channel now includes counters that indicate the\n number of currently connected TCP IPv4/IPv6 clients.\n * Added RESOLVER.ARPA to the built in empty zones.\n Feature Changes:\n * DNSSEC signatures that are not valid because the current time\n falls outside the signature inception and expiration dates are\n skipped instead of causing an immediate validation failure.\n Security Fixes:\n * A malicious DNS client that sent many queries over TCP but\n never read the responses could cause a server to respond slowly\n or not at all for other clients. This has been fixed.\n (CVE-2024-0760)\n * It is possible to craft excessively large resource records\n sets, which have the effect of slowing down database\n processing. This has been addressed by adding a configurable\n limit to the number of records that can be stored per name and\n type in a cache or zone database. The default is 100, which can\n be tuned with the new max-records-per-type option.\n * It is possible to craft excessively large numbers of resource\n record types for a given owner name, which has the effect of\n slowing down database processing. This has been addressed by\n adding a configurable limit to the number of records that can\n be stored per name and type in a cache or zone database. The\n default is 100, which can be tuned with the new\n max-types-per-name option. (CVE-2024-1737)\n * Validating DNS messages signed using the SIG(0) protocol (RFC\n 2931) could cause excessive CPU load, leading to a\n denial-of-service condition. Support for SIG(0) message\n validation was removed from this version of named.\n (CVE-2024-1975)\n * Due to a logic error, lookups that triggered serving stale data\n and required lookups in local authoritative zone data could\n have resulted in an assertion failure. This has been fixed.\n * Potential data races were found in our DoH implementation,\n related to HTTP/2 session object management and endpoints set\n object management after reconfiguration. These issues have been\n fixed.\n * When looking up the NS records of parent zones as part of\n looking up DS records, it was possible for named to trigger an\n assertion failure if serve-stale was enabled. This has been\n fixed. (CVE-2024-4076)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-2636,SUSE-SLE-Module-Basesystem-15-SP6-2024-2636,SUSE-SLE-Module-Server-Applications-15-SP6-2024-2636,openSUSE-SLE-15.6-2024-2636",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2636-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:2636-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242636-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:2636-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-July/036147.html"
},
{
"category": "self",
"summary": "SUSE Bug 1228255",
"url": "https://bugzilla.suse.com/1228255"
},
{
"category": "self",
"summary": "SUSE Bug 1228256",
"url": "https://bugzilla.suse.com/1228256"
},
{
"category": "self",
"summary": "SUSE Bug 1228257",
"url": "https://bugzilla.suse.com/1228257"
},
{
"category": "self",
"summary": "SUSE Bug 1228258",
"url": "https://bugzilla.suse.com/1228258"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-0760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-0760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1975 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1975/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-4076 page",
"url": "https://www.suse.com/security/cve/CVE-2024-4076/"
}
],
"title": "Security update for bind",
"tracking": {
"current_release_date": "2024-07-30T07:14:23Z",
"generator": {
"date": "2024-07-30T07:14:23Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:2636-1",
"initial_release_date": "2024-07-30T07:14:23Z",
"revision_history": [
{
"date": "2024-07-30T07:14:23Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bind-9.18.28-150600.3.3.1.aarch64",
"product": {
"name": "bind-9.18.28-150600.3.3.1.aarch64",
"product_id": "bind-9.18.28-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.18.28-150600.3.3.1.aarch64",
"product": {
"name": "bind-utils-9.18.28-150600.3.3.1.aarch64",
"product_id": "bind-utils-9.18.28-150600.3.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.18.28-150600.3.3.1.i586",
"product": {
"name": "bind-9.18.28-150600.3.3.1.i586",
"product_id": "bind-9.18.28-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "bind-utils-9.18.28-150600.3.3.1.i586",
"product": {
"name": "bind-utils-9.18.28-150600.3.3.1.i586",
"product_id": "bind-utils-9.18.28-150600.3.3.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-doc-9.18.28-150600.3.3.1.noarch",
"product": {
"name": "bind-doc-9.18.28-150600.3.3.1.noarch",
"product_id": "bind-doc-9.18.28-150600.3.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.18.28-150600.3.3.1.ppc64le",
"product": {
"name": "bind-9.18.28-150600.3.3.1.ppc64le",
"product_id": "bind-9.18.28-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-utils-9.18.28-150600.3.3.1.ppc64le",
"product": {
"name": "bind-utils-9.18.28-150600.3.3.1.ppc64le",
"product_id": "bind-utils-9.18.28-150600.3.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.18.28-150600.3.3.1.s390x",
"product": {
"name": "bind-9.18.28-150600.3.3.1.s390x",
"product_id": "bind-9.18.28-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-utils-9.18.28-150600.3.3.1.s390x",
"product": {
"name": "bind-utils-9.18.28-150600.3.3.1.s390x",
"product_id": "bind-utils-9.18.28-150600.3.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.18.28-150600.3.3.1.x86_64",
"product": {
"name": "bind-9.18.28-150600.3.3.1.x86_64",
"product_id": "bind-9.18.28-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.18.28-150600.3.3.1.x86_64",
"product": {
"name": "bind-utils-9.18.28-150600.3.3.1.x86_64",
"product_id": "bind-utils-9.18.28-150600.3.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.28-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64"
},
"product_reference": "bind-utils-9.18.28-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.28-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le"
},
"product_reference": "bind-utils-9.18.28-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.28-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x"
},
"product_reference": "bind-utils-9.18.28-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.28-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64"
},
"product_reference": "bind-utils-9.18.28-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.28-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64"
},
"product_reference": "bind-9.18.28-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.28-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le"
},
"product_reference": "bind-9.18.28-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.28-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x"
},
"product_reference": "bind-9.18.28-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.28-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64"
},
"product_reference": "bind-9.18.28-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.18.28-150600.3.3.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch"
},
"product_reference": "bind-doc-9.18.28-150600.3.3.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.28-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64"
},
"product_reference": "bind-9.18.28-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.28-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le"
},
"product_reference": "bind-9.18.28-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.28-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x"
},
"product_reference": "bind-9.18.28-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.18.28-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64"
},
"product_reference": "bind-9.18.28-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.18.28-150600.3.3.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch"
},
"product_reference": "bind-doc-9.18.28-150600.3.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.28-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64"
},
"product_reference": "bind-utils-9.18.28-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.28-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le"
},
"product_reference": "bind-utils-9.18.28-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.28-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x"
},
"product_reference": "bind-utils-9.18.28-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.18.28-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
},
"product_reference": "bind-utils-9.18.28-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-0760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-0760"
}
],
"notes": [
{
"category": "general",
"text": "A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. \nThis issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-0760",
"url": "https://www.suse.com/security/cve/CVE-2024-0760"
},
{
"category": "external",
"summary": "SUSE Bug 1228255 for CVE-2024-0760",
"url": "https://bugzilla.suse.com/1228255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-30T07:14:23Z",
"details": "important"
}
],
"title": "CVE-2024-0760"
},
{
"cve": "CVE-2024-1737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1737"
}
],
"notes": [
{
"category": "general",
"text": "Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname (of any RTYPE) can suffer from degraded performance as content is being added or updated, and also when handling client queries for this name.\nThis issue affects BIND 9 versions 9.11.0 through 9.11.37, 9.16.0 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.4-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.50-S1, and 9.18.11-S1 through 9.18.27-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1737",
"url": "https://www.suse.com/security/cve/CVE-2024-1737"
},
{
"category": "external",
"summary": "SUSE Bug 1228256 for CVE-2024-1737",
"url": "https://bugzilla.suse.com/1228256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-30T07:14:23Z",
"details": "important"
}
],
"title": "CVE-2024-1737"
},
{
"cve": "CVE-2024-1975",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1975"
}
],
"notes": [
{
"category": "general",
"text": "If a server hosts a zone containing a \"KEY\" Resource Record, or a resolver DNSSEC-validates a \"KEY\" Resource Record from a DNSSEC-signed domain in cache, a client can exhaust resolver CPU resources by sending a stream of SIG(0) signed requests.\nThis issue affects BIND 9 versions 9.0.0 through 9.11.37, 9.16.0 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.9.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.49-S1, and 9.18.11-S1 through 9.18.27-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1975",
"url": "https://www.suse.com/security/cve/CVE-2024-1975"
},
{
"category": "external",
"summary": "SUSE Bug 1228257 for CVE-2024-1975",
"url": "https://bugzilla.suse.com/1228257"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-30T07:14:23Z",
"details": "important"
}
],
"title": "CVE-2024-1975"
},
{
"cve": "CVE-2024-4076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-4076"
}
],
"notes": [
{
"category": "general",
"text": "Client queries that trigger serving stale data and that also require lookups in local authoritative zone data may result in an assertion failure.\nThis issue affects BIND 9 versions 9.16.13 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.33-S1 through 9.11.37-S1, 9.16.13-S1 through 9.16.50-S1, and 9.18.11-S1 through 9.18.27-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-4076",
"url": "https://www.suse.com/security/cve/CVE-2024-4076"
},
{
"category": "external",
"summary": "SUSE Bug 1228258 for CVE-2024-4076",
"url": "https://bugzilla.suse.com/1228258"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:bind-utils-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-9.18.28-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-9.18.28-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:bind-doc-9.18.28-150600.3.3.1.noarch",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.s390x",
"openSUSE Leap 15.6:bind-utils-9.18.28-150600.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-30T07:14:23Z",
"details": "important"
}
],
"title": "CVE-2024-4076"
}
]
}
CERTFR-2024-AVI-0618
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans ISC BIND. Elles permettent à un attaquant de provoquer un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "BIND versions 9.19.x ant\u00e9rieures \u00e0 9.20.0",
"product": {
"name": "BIND",
"vendor": {
"name": "ISC",
"scada": false
}
}
},
{
"description": "BIND versions 9.11.x \u00e0 9.18.x ant\u00e9rieures \u00e0 9.18.28",
"product": {
"name": "BIND",
"vendor": {
"name": "ISC",
"scada": false
}
}
},
{
"description": "BIND Supported Preview Edition versions 9.11.x \u00e0 9.18.x ant\u00e9rieures \u00e0 9.18.28-S1",
"product": {
"name": "BIND Supported Preview Edition",
"vendor": {
"name": "ISC",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-4076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4076"
},
{
"name": "CVE-2024-1975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1975"
},
{
"name": "CVE-2024-0760",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0760"
},
{
"name": "CVE-2024-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1737"
}
],
"initial_release_date": "2024-07-24T00:00:00",
"last_revision_date": "2024-07-24T00:00:00",
"links": [],
"reference": "CERTFR-2024-AVI-0618",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-07-24T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans ISC BIND. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans ISC BIND",
"vendor_advisories": [
{
"published_at": "2024-07-23",
"title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2024-4076",
"url": "https://kb.isc.org/v1/docs/cve-2024-4076"
},
{
"published_at": "2024-07-23",
"title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2024-1737",
"url": "https://kb.isc.org/v1/docs/cve-2024-1737"
},
{
"published_at": "2024-07-23",
"title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2024-0760",
"url": "https://kb.isc.org/v1/docs/cve-2024-0760"
},
{
"published_at": "2024-07-23",
"title": "Bulletin de s\u00e9curit\u00e9 ISC BIND cve-2024-1975",
"url": "https://kb.isc.org/v1/docs/cve-2024-1975"
}
]
}
CERTFR-2025-AVI-0756
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits VMware. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| VMware | Tanzu Platform | Tanzu Platform for Cloud Foundry isolation segment 10.2.2+LTS-T | ||
| VMware | Tanzu | Tanzu for MySQL on Cloud Foundry versions antérieures à 10.0.2 | ||
| VMware | Tanzu | Java Buildpack versions antérieures à 4.84.0 | ||
| VMware | Tanzu | Stemcells pour Ubuntu Jammy Azure Light versions antérieures à 1.894 | ||
| VMware | Tanzu Platform | Tanzu Platform for Cloud Foundry isolation segment versions antérieures à 10.0.9 | ||
| VMware | Tanzu | Tanzu Scheduler versions antérieures à 2.0.20 | ||
| VMware | Tanzu | Spring Cloud Services for VMware Tanzu versions antérieures à 3.3.9 | ||
| VMware | Tanzu | Tanzu GemFire versions antérieures à 10.1.4 | ||
| VMware | Tanzu Operations Manager | Tanzu Operations Manager versions antérieures à 3.1.2 | ||
| VMware | Tanzu Platform | Tanzu Platform for Cloud Foundry isolation segment versions antérieures à 6.0.19+LTS-T | ||
| VMware | Tanzu | Single Sign-On for VMware Tanzu Application Service versions antérieures à 1.16.12 | ||
| VMware | Tanzu | Tanzu Hub versions antérieures à 10.2.1 | ||
| VMware | Tanzu | Stemcells pour Ubuntu Jammy versions antérieures à 1.894 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Tanzu Platform for Cloud Foundry isolation segment 10.2.2+LTS-T",
"product": {
"name": "Tanzu Platform",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu for MySQL on Cloud Foundry versions ant\u00e9rieures \u00e0 10.0.2",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Java Buildpack versions ant\u00e9rieures \u00e0 4.84.0",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells pour Ubuntu Jammy Azure Light versions ant\u00e9rieures \u00e0 1.894",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Platform for Cloud Foundry isolation segment versions ant\u00e9rieures \u00e0 10.0.9",
"product": {
"name": "Tanzu Platform",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Scheduler versions ant\u00e9rieures \u00e0 2.0.20",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Spring Cloud Services for VMware Tanzu versions ant\u00e9rieures \u00e0 3.3.9",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu GemFire versions ant\u00e9rieures \u00e0 10.1.4",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Operations Manager versions ant\u00e9rieures \u00e0 3.1.2",
"product": {
"name": "Tanzu Operations Manager",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Platform for Cloud Foundry isolation segment versions ant\u00e9rieures \u00e0 6.0.19+LTS-T",
"product": {
"name": "Tanzu Platform",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Single Sign-On for VMware Tanzu Application Service versions ant\u00e9rieures \u00e0 1.16.12",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Hub versions ant\u00e9rieures \u00e0 10.2.1",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells pour Ubuntu Jammy versions ant\u00e9rieures \u00e0 1.894",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2021-44832",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44832"
},
{
"name": "CVE-2021-45105",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45105"
},
{
"name": "CVE-2021-44228",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44228"
},
{
"name": "CVE-2013-1548",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1548"
},
{
"name": "CVE-2015-4779",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4779"
},
{
"name": "CVE-2015-4780",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4780"
},
{
"name": "CVE-2015-4787",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4787"
},
{
"name": "CVE-2015-4790",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4790"
},
{
"name": "CVE-2015-4778",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4778"
},
{
"name": "CVE-2015-4782",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4782"
},
{
"name": "CVE-2015-4789",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4789"
},
{
"name": "CVE-2015-4764",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4764"
},
{
"name": "CVE-2015-4783",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4783"
},
{
"name": "CVE-2015-2583",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2583"
},
{
"name": "CVE-2015-4781",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4781"
},
{
"name": "CVE-2015-4776",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4776"
},
{
"name": "CVE-2015-4786",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4786"
},
{
"name": "CVE-2015-2656",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2656"
},
{
"name": "CVE-2015-4788",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4788"
},
{
"name": "CVE-2015-4785",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4785"
},
{
"name": "CVE-2015-4754",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4754"
},
{
"name": "CVE-2015-4775",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4775"
},
{
"name": "CVE-2015-4777",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4777"
},
{
"name": "CVE-2015-2640",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2640"
},
{
"name": "CVE-2015-4774",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4774"
},
{
"name": "CVE-2015-2626",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2626"
},
{
"name": "CVE-2015-2624",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2624"
},
{
"name": "CVE-2015-4784",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4784"
},
{
"name": "CVE-2015-2654",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2654"
},
{
"name": "CVE-2017-8046",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8046"
},
{
"name": "CVE-2018-3280",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3280"
},
{
"name": "CVE-2018-3137",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3137"
},
{
"name": "CVE-2018-3285",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3285"
},
{
"name": "CVE-2018-3182",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3182"
},
{
"name": "CVE-2018-3186",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3186"
},
{
"name": "CVE-2018-3195",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3195"
},
{
"name": "CVE-2018-3286",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3286"
},
{
"name": "CVE-2018-3170",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3170"
},
{
"name": "CVE-2018-3279",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3279"
},
{
"name": "CVE-2018-3212",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3212"
},
{
"name": "CVE-2018-3203",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3203"
},
{
"name": "CVE-2018-3145",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3145"
},
{
"name": "CVE-2019-2530",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2530"
},
{
"name": "CVE-2019-2436",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2436"
},
{
"name": "CVE-2019-2539",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2539"
},
{
"name": "CVE-2019-2494",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2494"
},
{
"name": "CVE-2019-2535",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2535"
},
{
"name": "CVE-2019-2533",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2533"
},
{
"name": "CVE-2019-2495",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2495"
},
{
"name": "CVE-2019-2513",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2513"
},
{
"name": "CVE-2019-2536",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2536"
},
{
"name": "CVE-2019-2502",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2502"
},
{
"name": "CVE-2019-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2634"
},
{
"name": "CVE-2019-2587",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2587"
},
{
"name": "CVE-2019-2584",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2584"
},
{
"name": "CVE-2019-2691",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2691"
},
{
"name": "CVE-2019-2606",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2606"
},
{
"name": "CVE-2019-2630",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2630"
},
{
"name": "CVE-2019-2624",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2624"
},
{
"name": "CVE-2019-2623",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2623"
},
{
"name": "CVE-2019-2695",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2695"
},
{
"name": "CVE-2019-2596",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2596"
},
{
"name": "CVE-2019-2580",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2580"
},
{
"name": "CVE-2019-2644",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2644"
},
{
"name": "CVE-2019-2681",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2681"
},
{
"name": "CVE-2019-2617",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2617"
},
{
"name": "CVE-2019-2636",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2636"
},
{
"name": "CVE-2019-2689",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2689"
},
{
"name": "CVE-2019-2693",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2693"
},
{
"name": "CVE-2019-2593",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2593"
},
{
"name": "CVE-2019-2625",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2625"
},
{
"name": "CVE-2019-2585",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2585"
},
{
"name": "CVE-2019-2631",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2631"
},
{
"name": "CVE-2019-2694",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2694"
},
{
"name": "CVE-2019-2620",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2620"
},
{
"name": "CVE-2019-2688",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2688"
},
{
"name": "CVE-2019-2589",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2589"
},
{
"name": "CVE-2019-2635",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2635"
},
{
"name": "CVE-2019-2626",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2626"
},
{
"name": "CVE-2019-2686",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2686"
},
{
"name": "CVE-2019-2685",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2685"
},
{
"name": "CVE-2019-2687",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2687"
},
{
"name": "CVE-2019-2607",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2607"
},
{
"name": "CVE-2019-7317",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-7317"
},
{
"name": "CVE-2019-2811",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2811"
},
{
"name": "CVE-2019-2740",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2740"
},
{
"name": "CVE-2019-2879",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2879"
},
{
"name": "CVE-2019-2808",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2808"
},
{
"name": "CVE-2019-2738",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2738"
},
{
"name": "CVE-2019-2819",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2819"
},
{
"name": "CVE-2019-2737",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2737"
},
{
"name": "CVE-2019-2814",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2814"
},
{
"name": "CVE-2019-2778",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2778"
},
{
"name": "CVE-2019-2822",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2822"
},
{
"name": "CVE-2019-2802",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2802"
},
{
"name": "CVE-2019-2803",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2803"
},
{
"name": "CVE-2019-2752",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2752"
},
{
"name": "CVE-2019-2826",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2826"
},
{
"name": "CVE-2019-2784",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2784"
},
{
"name": "CVE-2019-2789",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2789"
},
{
"name": "CVE-2019-2801",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2801"
},
{
"name": "CVE-2019-2791",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2791"
},
{
"name": "CVE-2019-2798",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2798"
},
{
"name": "CVE-2019-2796",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2796"
},
{
"name": "CVE-2019-2815",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2815"
},
{
"name": "CVE-2019-2810",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2810"
},
{
"name": "CVE-2019-2780",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2780"
},
{
"name": "CVE-2019-2758",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2758"
},
{
"name": "CVE-2019-2757",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2757"
},
{
"name": "CVE-2019-2785",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2785"
},
{
"name": "CVE-2019-2747",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2747"
},
{
"name": "CVE-2019-2741",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2741"
},
{
"name": "CVE-2019-2830",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2830"
},
{
"name": "CVE-2019-2834",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2834"
},
{
"name": "CVE-2019-2743",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2743"
},
{
"name": "CVE-2019-2739",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2739"
},
{
"name": "CVE-2019-2805",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2805"
},
{
"name": "CVE-2019-2797",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2797"
},
{
"name": "CVE-2019-2774",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2774"
},
{
"name": "CVE-2019-2795",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2795"
},
{
"name": "CVE-2019-2746",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2746"
},
{
"name": "CVE-2019-2812",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2812"
},
{
"name": "CVE-2019-2924",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2924"
},
{
"name": "CVE-2019-2914",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2914"
},
{
"name": "CVE-2019-2960",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2960"
},
{
"name": "CVE-2019-2923",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2923"
},
{
"name": "CVE-2019-2968",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2968"
},
{
"name": "CVE-2019-2993",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2993"
},
{
"name": "CVE-2019-3009",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3009"
},
{
"name": "CVE-2019-2969",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2969"
},
{
"name": "CVE-2019-3011",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3011"
},
{
"name": "CVE-2019-2967",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2967"
},
{
"name": "CVE-2019-2946",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2946"
},
{
"name": "CVE-2019-2966",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2966"
},
{
"name": "CVE-2019-2957",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2957"
},
{
"name": "CVE-2019-2948",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2948"
},
{
"name": "CVE-2019-2922",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2922"
},
{
"name": "CVE-2019-3004",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3004"
},
{
"name": "CVE-2019-2998",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2998"
},
{
"name": "CVE-2019-2911",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2911"
},
{
"name": "CVE-2019-2950",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2950"
},
{
"name": "CVE-2019-2910",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2910"
},
{
"name": "CVE-2019-3018",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3018"
},
{
"name": "CVE-2019-2974",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2974"
},
{
"name": "CVE-2019-2991",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2991"
},
{
"name": "CVE-2019-2997",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2997"
},
{
"name": "CVE-2019-2938",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2938"
},
{
"name": "CVE-2019-3003",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3003"
},
{
"name": "CVE-2019-2982",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2982"
},
{
"name": "CVE-2019-2963",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2963"
},
{
"name": "CVE-2020-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2579"
},
{
"name": "CVE-2020-2584",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2584"
},
{
"name": "CVE-2020-2577",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2577"
},
{
"name": "CVE-2020-2679",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2679"
},
{
"name": "CVE-2020-2570",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2570"
},
{
"name": "CVE-2020-2572",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2572"
},
{
"name": "CVE-2020-2627",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2627"
},
{
"name": "CVE-2020-2660",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2660"
},
{
"name": "CVE-2020-2589",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2589"
},
{
"name": "CVE-2020-2573",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2573"
},
{
"name": "CVE-2020-2686",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2686"
},
{
"name": "CVE-2020-2694",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2694"
},
{
"name": "CVE-2020-2574",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2574"
},
{
"name": "CVE-2020-2770",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2770"
},
{
"name": "CVE-2020-2925",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2925"
},
{
"name": "CVE-2020-2853",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2853"
},
{
"name": "CVE-2020-2774",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2774"
},
{
"name": "CVE-2020-2928",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2928"
},
{
"name": "CVE-2020-2897",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2897"
},
{
"name": "CVE-2020-2812",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2812"
},
{
"name": "CVE-2020-2765",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2765"
},
{
"name": "CVE-2020-2761",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2761"
},
{
"name": "CVE-2020-2790",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2790"
},
{
"name": "CVE-2020-2752",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2752"
},
{
"name": "CVE-2020-2904",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2904"
},
{
"name": "CVE-2020-2893",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2893"
},
{
"name": "CVE-2020-2760",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2760"
},
{
"name": "CVE-2020-2780",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2780"
},
{
"name": "CVE-2020-2903",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2903"
},
{
"name": "CVE-2020-2924",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2924"
},
{
"name": "CVE-2020-2806",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2806"
},
{
"name": "CVE-2020-2922",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2922"
},
{
"name": "CVE-2020-2901",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2901"
},
{
"name": "CVE-2020-2926",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2926"
},
{
"name": "CVE-2020-2923",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2923"
},
{
"name": "CVE-2020-2921",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2921"
},
{
"name": "CVE-2020-2779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2779"
},
{
"name": "CVE-2020-2892",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2892"
},
{
"name": "CVE-2020-2896",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2896"
},
{
"name": "CVE-2020-2804",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2804"
},
{
"name": "CVE-2020-2895",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2895"
},
{
"name": "CVE-2020-2930",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2930"
},
{
"name": "CVE-2020-2814",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2814"
},
{
"name": "CVE-2020-2759",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2759"
},
{
"name": "CVE-2020-2763",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2763"
},
{
"name": "CVE-2020-14550",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14550"
},
{
"name": "CVE-2020-14567",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14567"
},
{
"name": "CVE-2020-14559",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14559"
},
{
"name": "CVE-2020-14576",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14576"
},
{
"name": "CVE-2020-14540",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14540"
},
{
"name": "CVE-2020-14547",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14547"
},
{
"name": "CVE-2020-14553",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14553"
},
{
"name": "CVE-2020-14539",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14539"
},
{
"name": "CVE-2020-14845",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14845"
},
{
"name": "CVE-2020-14799",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14799"
},
{
"name": "CVE-2020-14793",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14793"
},
{
"name": "CVE-2020-14888",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14888"
},
{
"name": "CVE-2020-14790",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14790"
},
{
"name": "CVE-2020-14789",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14789"
},
{
"name": "CVE-2020-14672",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14672"
},
{
"name": "CVE-2020-14846",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14846"
},
{
"name": "CVE-2020-14771",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14771"
},
{
"name": "CVE-2020-14873",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14873"
},
{
"name": "CVE-2020-14791",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14791"
},
{
"name": "CVE-2020-14769",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14769"
},
{
"name": "CVE-2020-14844",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14844"
},
{
"name": "CVE-2020-14809",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14809"
},
{
"name": "CVE-2020-14860",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14860"
},
{
"name": "CVE-2020-14866",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14866"
},
{
"name": "CVE-2020-14861",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14861"
},
{
"name": "CVE-2020-14773",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14773"
},
{
"name": "CVE-2020-14776",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14776"
},
{
"name": "CVE-2020-14852",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14852"
},
{
"name": "CVE-2020-14760",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14760"
},
{
"name": "CVE-2020-14870",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14870"
},
{
"name": "CVE-2020-14837",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14837"
},
{
"name": "CVE-2020-14893",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14893"
},
{
"name": "CVE-2020-14836",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14836"
},
{
"name": "CVE-2020-14829",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14829"
},
{
"name": "CVE-2020-14868",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14868"
},
{
"name": "CVE-2020-14827",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14827"
},
{
"name": "CVE-2020-14839",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14839"
},
{
"name": "CVE-2020-14777",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14777"
},
{
"name": "CVE-2020-14812",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14812"
},
{
"name": "CVE-2020-14775",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14775"
},
{
"name": "CVE-2020-14838",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14838"
},
{
"name": "CVE-2020-14869",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14869"
},
{
"name": "CVE-2020-14765",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14765"
},
{
"name": "CVE-2020-14814",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14814"
},
{
"name": "CVE-2020-14821",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14821"
},
{
"name": "CVE-2020-14830",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14830"
},
{
"name": "CVE-2020-14828",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14828"
},
{
"name": "CVE-2020-14804",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14804"
},
{
"name": "CVE-2020-14800",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14800"
},
{
"name": "CVE-2020-14891",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14891"
},
{
"name": "CVE-2020-14848",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14848"
},
{
"name": "CVE-2020-14867",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14867"
},
{
"name": "CVE-2020-14785",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14785"
},
{
"name": "CVE-2020-14794",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14794"
},
{
"name": "CVE-2020-14786",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14786"
},
{
"name": "CVE-2020-15358",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15358"
},
{
"name": "CVE-2020-1971",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1971"
},
{
"name": "CVE-2021-2010",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2010"
},
{
"name": "CVE-2021-2001",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2001"
},
{
"name": "CVE-2021-2060",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2060"
},
{
"name": "CVE-2021-2014",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2014"
},
{
"name": "CVE-2021-2032",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2032"
},
{
"name": "CVE-2021-2036",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2036"
},
{
"name": "CVE-2021-2007",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2007"
},
{
"name": "CVE-2021-2011",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2011"
},
{
"name": "CVE-2021-2022",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2022"
},
{
"name": "CVE-2019-25013",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25013"
},
{
"name": "CVE-2021-2308",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2308"
},
{
"name": "CVE-2021-2213",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2213"
},
{
"name": "CVE-2021-2172",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2172"
},
{
"name": "CVE-2021-2293",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2293"
},
{
"name": "CVE-2021-2208",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2208"
},
{
"name": "CVE-2021-2196",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2196"
},
{
"name": "CVE-2021-2194",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2194"
},
{
"name": "CVE-2021-2298",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2298"
},
{
"name": "CVE-2021-2162",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2162"
},
{
"name": "CVE-2021-2179",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2179"
},
{
"name": "CVE-2021-2307",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2307"
},
{
"name": "CVE-2021-2217",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2217"
},
{
"name": "CVE-2021-2180",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2180"
},
{
"name": "CVE-2021-2203",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2203"
},
{
"name": "CVE-2021-2144",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2144"
},
{
"name": "CVE-2021-2226",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2226"
},
{
"name": "CVE-2021-2232",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2232"
},
{
"name": "CVE-2021-2169",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2169"
},
{
"name": "CVE-2021-2301",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2301"
},
{
"name": "CVE-2021-2202",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2202"
},
{
"name": "CVE-2021-2166",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2166"
},
{
"name": "CVE-2021-2174",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2174"
},
{
"name": "CVE-2021-2154",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2154"
},
{
"name": "CVE-2021-2193",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2193"
},
{
"name": "CVE-2021-2300",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2300"
},
{
"name": "CVE-2021-2299",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2299"
},
{
"name": "CVE-2021-2212",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2212"
},
{
"name": "CVE-2021-2178",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2178"
},
{
"name": "CVE-2021-2146",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2146"
},
{
"name": "CVE-2021-2230",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2230"
},
{
"name": "CVE-2021-2278",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2278"
},
{
"name": "CVE-2021-2164",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2164"
},
{
"name": "CVE-2021-2201",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2201"
},
{
"name": "CVE-2021-2170",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2170"
},
{
"name": "CVE-2021-2304",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2304"
},
{
"name": "CVE-2021-2160",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2160"
},
{
"name": "CVE-2021-2171",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2171"
},
{
"name": "CVE-2021-2305",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2305"
},
{
"name": "CVE-2021-2215",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2215"
},
{
"name": "CVE-2021-25214",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25214"
},
{
"name": "CVE-2012-6153",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-6153"
},
{
"name": "CVE-2020-10878",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10878"
},
{
"name": "CVE-2021-2370",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2370"
},
{
"name": "CVE-2021-2389",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2389"
},
{
"name": "CVE-2021-2444",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2444"
},
{
"name": "CVE-2021-2429",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2429"
},
{
"name": "CVE-2021-2426",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2426"
},
{
"name": "CVE-2021-2427",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2427"
},
{
"name": "CVE-2021-2339",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2339"
},
{
"name": "CVE-2021-2425",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2425"
},
{
"name": "CVE-2021-2387",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2387"
},
{
"name": "CVE-2021-2383",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2383"
},
{
"name": "CVE-2021-2372",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2372"
},
{
"name": "CVE-2021-2399",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2399"
},
{
"name": "CVE-2021-2384",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2384"
},
{
"name": "CVE-2021-2412",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2412"
},
{
"name": "CVE-2021-2441",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2441"
},
{
"name": "CVE-2021-2410",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2410"
},
{
"name": "CVE-2021-2342",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2342"
},
{
"name": "CVE-2021-2437",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2437"
},
{
"name": "CVE-2021-2417",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2417"
},
{
"name": "CVE-2021-2424",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2424"
},
{
"name": "CVE-2021-2385",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2385"
},
{
"name": "CVE-2021-2357",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2357"
},
{
"name": "CVE-2021-2352",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2352"
},
{
"name": "CVE-2021-2402",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2402"
},
{
"name": "CVE-2021-2440",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2440"
},
{
"name": "CVE-2021-2340",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2340"
},
{
"name": "CVE-2021-2390",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2390"
},
{
"name": "CVE-2021-2374",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2374"
},
{
"name": "CVE-2021-2356",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2356"
},
{
"name": "CVE-2021-2411",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2411"
},
{
"name": "CVE-2021-2418",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2418"
},
{
"name": "CVE-2021-2367",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2367"
},
{
"name": "CVE-2021-2354",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2354"
},
{
"name": "CVE-2021-2422",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2422"
},
{
"name": "CVE-2020-10543",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10543"
},
{
"name": "CVE-2020-12723",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12723"
},
{
"name": "CVE-2020-10029",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10029"
},
{
"name": "CVE-2021-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23337"
},
{
"name": "CVE-2020-28500",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28500"
},
{
"name": "CVE-2019-18276",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18276"
},
{
"name": "CVE-2021-3421",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3421"
},
{
"name": "CVE-2021-3326",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3326"
},
{
"name": "CVE-2019-2708",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2708"
},
{
"name": "CVE-2020-27618",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27618"
},
{
"name": "CVE-2021-35640",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35640"
},
{
"name": "CVE-2021-35626",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35626"
},
{
"name": "CVE-2021-2478",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2478"
},
{
"name": "CVE-2021-35624",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35624"
},
{
"name": "CVE-2021-35583",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35583"
},
{
"name": "CVE-2021-35628",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35628"
},
{
"name": "CVE-2021-35630",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35630"
},
{
"name": "CVE-2021-35644",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35644"
},
{
"name": "CVE-2021-2479",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2479"
},
{
"name": "CVE-2021-35638",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35638"
},
{
"name": "CVE-2021-35646",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35646"
},
{
"name": "CVE-2021-35596",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35596"
},
{
"name": "CVE-2021-35643",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35643"
},
{
"name": "CVE-2021-35637",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35637"
},
{
"name": "CVE-2021-35623",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35623"
},
{
"name": "CVE-2021-35632",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35632"
},
{
"name": "CVE-2021-35641",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35641"
},
{
"name": "CVE-2021-35604",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35604"
},
{
"name": "CVE-2021-35636",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35636"
},
{
"name": "CVE-2021-35546",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35546"
},
{
"name": "CVE-2021-35627",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35627"
},
{
"name": "CVE-2021-35625",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35625"
},
{
"name": "CVE-2021-35608",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35608"
},
{
"name": "CVE-2021-35597",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35597"
},
{
"name": "CVE-2021-35537",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35537"
},
{
"name": "CVE-2021-2481",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2481"
},
{
"name": "CVE-2021-35622",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35622"
},
{
"name": "CVE-2021-35610",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35610"
},
{
"name": "CVE-2021-35633",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35633"
},
{
"name": "CVE-2021-35634",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35634"
},
{
"name": "CVE-2021-35629",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35629"
},
{
"name": "CVE-2021-35631",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35631"
},
{
"name": "CVE-2021-35645",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35645"
},
{
"name": "CVE-2021-35647",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35647"
},
{
"name": "CVE-2021-35612",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35612"
},
{
"name": "CVE-2021-35639",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35639"
},
{
"name": "CVE-2021-35648",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35648"
},
{
"name": "CVE-2021-35607",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35607"
},
{
"name": "CVE-2021-35602",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35602"
},
{
"name": "CVE-2021-35577",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35577"
},
{
"name": "CVE-2021-35642",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35642"
},
{
"name": "CVE-2021-35575",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35575"
},
{
"name": "CVE-2021-35635",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35635"
},
{
"name": "CVE-2021-35591",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35591"
},
{
"name": "CVE-2021-25219",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25219"
},
{
"name": "CVE-2021-3875",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3875"
},
{
"name": "CVE-2019-10744",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10744"
},
{
"name": "CVE-2022-21352",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21352"
},
{
"name": "CVE-2022-21304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21304"
},
{
"name": "CVE-2022-21254",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21254"
},
{
"name": "CVE-2022-21265",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21265"
},
{
"name": "CVE-2022-21348",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21348"
},
{
"name": "CVE-2022-21372",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21372"
},
{
"name": "CVE-2022-21245",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21245"
},
{
"name": "CVE-2022-21368",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21368"
},
{
"name": "CVE-2022-21339",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21339"
},
{
"name": "CVE-2022-21264",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21264"
},
{
"name": "CVE-2022-21297",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21297"
},
{
"name": "CVE-2022-21379",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21379"
},
{
"name": "CVE-2022-21253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21253"
},
{
"name": "CVE-2022-21301",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21301"
},
{
"name": "CVE-2022-21378",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21378"
},
{
"name": "CVE-2022-21370",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21370"
},
{
"name": "CVE-2022-21302",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21302"
},
{
"name": "CVE-2022-21249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21249"
},
{
"name": "CVE-2022-21344",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21344"
},
{
"name": "CVE-2022-21270",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21270"
},
{
"name": "CVE-2022-21367",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21367"
},
{
"name": "CVE-2022-21342",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21342"
},
{
"name": "CVE-2022-21362",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21362"
},
{
"name": "CVE-2022-21303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21303"
},
{
"name": "CVE-2022-21256",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21256"
},
{
"name": "CVE-2022-21358",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21358"
},
{
"name": "CVE-2022-21374",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21374"
},
{
"name": "CVE-2022-3602",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3602"
},
{
"name": "CVE-2022-2309",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2309"
},
{
"name": "CVE-2022-29824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29824"
},
{
"name": "CVE-2022-35737",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35737"
},
{
"name": "CVE-2022-40303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40303"
},
{
"name": "CVE-2022-40304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40304"
},
{
"name": "CVE-2020-8203",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8203"
},
{
"name": "CVE-2022-3786",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3786"
},
{
"name": "CVE-2022-2795",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2795"
},
{
"name": "CVE-2022-34903",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34903"
},
{
"name": "CVE-2022-3515",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3515"
},
{
"name": "CVE-2022-3996",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3996"
},
{
"name": "CVE-2022-22942",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22942"
},
{
"name": "CVE-2021-4193",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4193"
},
{
"name": "CVE-2020-15366",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15366"
},
{
"name": "CVE-2022-22965",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22965"
},
{
"name": "CVE-2022-0213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0213"
},
{
"name": "CVE-2022-21418",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21418"
},
{
"name": "CVE-2022-21412",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21412"
},
{
"name": "CVE-2022-21437",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21437"
},
{
"name": "CVE-2022-21478",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21478"
},
{
"name": "CVE-2022-21479",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21479"
},
{
"name": "CVE-2022-21438",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21438"
},
{
"name": "CVE-2022-21440",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21440"
},
{
"name": "CVE-2022-21451",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21451"
},
{
"name": "CVE-2022-21427",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21427"
},
{
"name": "CVE-2022-21415",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21415"
},
{
"name": "CVE-2022-21459",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21459"
},
{
"name": "CVE-2022-21460",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21460"
},
{
"name": "CVE-2022-21414",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21414"
},
{
"name": "CVE-2022-21413",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21413"
},
{
"name": "CVE-2022-21436",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21436"
},
{
"name": "CVE-2022-21435",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21435"
},
{
"name": "CVE-2022-21462",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21462"
},
{
"name": "CVE-2022-21444",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21444"
},
{
"name": "CVE-2022-21417",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21417"
},
{
"name": "CVE-2022-21457",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21457"
},
{
"name": "CVE-2022-21425",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21425"
},
{
"name": "CVE-2022-21452",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21452"
},
{
"name": "CVE-2021-20266",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20266"
},
{
"name": "CVE-2022-1292",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1292"
},
{
"name": "CVE-2022-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1473"
},
{
"name": "CVE-2021-3521",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3521"
},
{
"name": "CVE-2021-4122",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4122"
},
{
"name": "CVE-2022-2068",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2068"
},
{
"name": "CVE-2017-7500",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7500"
},
{
"name": "CVE-2021-33574",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33574"
},
{
"name": "CVE-2017-11164",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11164"
},
{
"name": "CVE-2022-21525",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21525"
},
{
"name": "CVE-2022-21537",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21537"
},
{
"name": "CVE-2022-21455",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21455"
},
{
"name": "CVE-2022-21534",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21534"
},
{
"name": "CVE-2022-21528",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21528"
},
{
"name": "CVE-2022-21529",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21529"
},
{
"name": "CVE-2022-21531",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21531"
},
{
"name": "CVE-2022-21515",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21515"
},
{
"name": "CVE-2022-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21538"
},
{
"name": "CVE-2022-21527",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21527"
},
{
"name": "CVE-2022-21517",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21517"
},
{
"name": "CVE-2022-21539",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21539"
},
{
"name": "CVE-2022-21556",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21556"
},
{
"name": "CVE-2022-21509",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21509"
},
{
"name": "CVE-2022-21553",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21553"
},
{
"name": "CVE-2022-21530",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21530"
},
{
"name": "CVE-2022-21522",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21522"
},
{
"name": "CVE-2022-21547",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21547"
},
{
"name": "CVE-2022-21569",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21569"
},
{
"name": "CVE-2022-21526",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21526"
},
{
"name": "CVE-2021-3999",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3999"
},
{
"name": "CVE-2022-23218",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23218"
},
{
"name": "CVE-2022-23219",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23219"
},
{
"name": "CVE-2022-27782",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27782"
},
{
"name": "CVE-2021-25220",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25220"
},
{
"name": "CVE-2022-0396",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0396"
},
{
"name": "CVE-2022-3358",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3358"
},
{
"name": "CVE-2022-1271",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1271"
},
{
"name": "CVE-2012-5783",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5783"
},
{
"name": "CVE-2022-21592",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21592"
},
{
"name": "CVE-2022-21617",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21617"
},
{
"name": "CVE-2022-21595",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21595"
},
{
"name": "CVE-2022-21608",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21608"
},
{
"name": "CVE-2022-21589",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21589"
},
{
"name": "CVE-2023-21863",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21863"
},
{
"name": "CVE-2023-21873",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21873"
},
{
"name": "CVE-2023-21879",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21879"
},
{
"name": "CVE-2023-21880",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21880"
},
{
"name": "CVE-2023-21869",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21869"
},
{
"name": "CVE-2023-21872",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21872"
},
{
"name": "CVE-2023-21877",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21877"
},
{
"name": "CVE-2023-21870",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21870"
},
{
"name": "CVE-2023-21887",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21887"
},
{
"name": "CVE-2023-21836",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21836"
},
{
"name": "CVE-2023-21881",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21881"
},
{
"name": "CVE-2023-21876",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21876"
},
{
"name": "CVE-2023-21840",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21840"
},
{
"name": "CVE-2023-21878",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21878"
},
{
"name": "CVE-2023-21866",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21866"
},
{
"name": "CVE-2023-21875",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21875"
},
{
"name": "CVE-2023-21865",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21865"
},
{
"name": "CVE-2023-21883",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21883"
},
{
"name": "CVE-2023-21867",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21867"
},
{
"name": "CVE-2023-21874",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21874"
},
{
"name": "CVE-2023-21871",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21871"
},
{
"name": "CVE-2023-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0286"
},
{
"name": "CVE-2023-0401",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0401"
},
{
"name": "CVE-2023-0215",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0215"
},
{
"name": "CVE-2023-0217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0217"
},
{
"name": "CVE-2023-0216",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0216"
},
{
"name": "CVE-2022-4450",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4450"
},
{
"name": "CVE-2022-4415",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4415"
},
{
"name": "CVE-2023-24329",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24329"
},
{
"name": "CVE-2023-0464",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0464"
},
{
"name": "CVE-2023-21963",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21963"
},
{
"name": "CVE-2023-21977",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21977"
},
{
"name": "CVE-2023-21912",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21912"
},
{
"name": "CVE-2023-29469",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29469"
},
{
"name": "CVE-2023-28484",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28484"
},
{
"name": "CVE-2023-20873",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-20873"
},
{
"name": "CVE-2023-20883",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-20883"
},
{
"name": "CVE-2023-27535",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27535"
},
{
"name": "CVE-2023-27538",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27538"
},
{
"name": "CVE-2023-27536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27536"
},
{
"name": "CVE-2023-27537",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27537"
},
{
"name": "CVE-2020-1752",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1752"
},
{
"name": "CVE-2021-35942",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35942"
},
{
"name": "CVE-2021-38604",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38604"
},
{
"name": "CVE-2020-29562",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29562"
},
{
"name": "CVE-2021-27645",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-27645"
},
{
"name": "CVE-2023-28322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28322"
},
{
"name": "CVE-2022-46908",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-46908"
},
{
"name": "CVE-2023-28320",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28320"
},
{
"name": "CVE-2023-28321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28321"
},
{
"name": "CVE-2023-22053",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22053"
},
{
"name": "CVE-2023-22007",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22007"
},
{
"name": "CVE-2022-4899",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4899"
},
{
"name": "CVE-2022-25883",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25883"
},
{
"name": "CVE-2023-40403",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40403"
},
{
"name": "CVE-2023-4911",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4911"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2016-1000027",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-1000027"
},
{
"name": "CVE-2023-35116",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35116"
},
{
"name": "CVE-2023-22097",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22097"
},
{
"name": "CVE-2023-22084",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22084"
},
{
"name": "CVE-2023-22026",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22026"
},
{
"name": "CVE-2023-22028",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22028"
},
{
"name": "CVE-2023-22015",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22015"
},
{
"name": "CVE-2023-22103",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22103"
},
{
"name": "CVE-2023-22068",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22068"
},
{
"name": "CVE-2023-22078",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22078"
},
{
"name": "CVE-2023-38546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38546"
},
{
"name": "CVE-2023-22059",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22059"
},
{
"name": "CVE-2023-22066",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22066"
},
{
"name": "CVE-2023-22114",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22114"
},
{
"name": "CVE-2023-22070",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22070"
},
{
"name": "CVE-2023-22032",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22032"
},
{
"name": "CVE-2023-5363",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5363"
},
{
"name": "CVE-2023-4807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4807"
},
{
"name": "CVE-2023-45853",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45853"
},
{
"name": "CVE-2023-5678",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5678"
},
{
"name": "CVE-2023-40217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40217"
},
{
"name": "CVE-2023-45803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45803"
},
{
"name": "CVE-2021-22570",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22570"
},
{
"name": "CVE-2023-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2603"
},
{
"name": "CVE-2023-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2602"
},
{
"name": "CVE-2023-4527",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4527"
},
{
"name": "CVE-2023-4813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4813"
},
{
"name": "CVE-2023-4806",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4806"
},
{
"name": "CVE-2022-48303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48303"
},
{
"name": "CVE-2023-34055",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34055"
},
{
"name": "CVE-2023-4039",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4039"
},
{
"name": "CVE-2022-3715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3715"
},
{
"name": "CVE-2023-0687",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0687"
},
{
"name": "CVE-2023-5156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5156"
},
{
"name": "CVE-2022-48522",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48522"
},
{
"name": "CVE-2023-39615",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39615"
},
{
"name": "CVE-2021-46848",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46848"
},
{
"name": "CVE-2021-33294",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33294"
},
{
"name": "CVE-2021-43618",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43618"
},
{
"name": "CVE-2023-45322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45322"
},
{
"name": "CVE-2022-28321",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28321"
},
{
"name": "CVE-2023-4016",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4016"
},
{
"name": "CVE-2013-4235",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4235"
},
{
"name": "CVE-2023-34969",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34969"
},
{
"name": "CVE-2021-20193",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20193"
},
{
"name": "CVE-2023-29383",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29383"
},
{
"name": "CVE-2023-5981",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5981"
},
{
"name": "CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"name": "CVE-2023-6237",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
},
{
"name": "CVE-2023-31484",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31484"
},
{
"name": "CVE-2023-36054",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36054"
},
{
"name": "CVE-2023-7104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7104"
},
{
"name": "CVE-2023-6129",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
},
{
"name": "CVE-2023-46218",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46218"
},
{
"name": "CVE-2023-46219",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46219"
},
{
"name": "CVE-2024-0727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
},
{
"name": "CVE-2023-47100",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47100"
},
{
"name": "CVE-2023-47038",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47038"
},
{
"name": "CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"name": "CVE-2022-27772",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27772"
},
{
"name": "CVE-2023-27043",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27043"
},
{
"name": "CVE-2023-6481",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6481"
},
{
"name": "CVE-2023-36632",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36632"
},
{
"name": "CVE-2024-28085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28085"
},
{
"name": "CVE-2024-2511",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2511"
},
{
"name": "CVE-2020-22916",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-22916"
},
{
"name": "CVE-2016-2781",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2781"
},
{
"name": "CVE-2023-3978",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3978"
},
{
"name": "CVE-2017-7501",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7501"
},
{
"name": "CVE-2021-35939",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35939"
},
{
"name": "CVE-2024-0553",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0553"
},
{
"name": "CVE-2021-35938",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35938"
},
{
"name": "CVE-2021-35937",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35937"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2024-26686",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26686"
},
{
"name": "CVE-2023-52572",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52572"
},
{
"name": "CVE-2007-4559",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4559"
},
{
"name": "CVE-2023-3138",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3138"
},
{
"name": "CVE-2024-28182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28182"
},
{
"name": "CVE-2023-45288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45288"
},
{
"name": "CVE-2024-4603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4603"
},
{
"name": "CVE-2023-6378",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6378"
},
{
"name": "CVE-2023-31486",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31486"
},
{
"name": "CVE-2024-26739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26739"
},
{
"name": "CVE-2024-4741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4741"
},
{
"name": "CVE-2023-51074",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51074"
},
{
"name": "CVE-2023-52757",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52757"
},
{
"name": "CVE-2024-35866",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35866"
},
{
"name": "CVE-2024-35867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35867"
},
{
"name": "CVE-2024-35943",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35943"
},
{
"name": "CVE-2024-28180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28180"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2024-5535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5535"
},
{
"name": "CVE-2024-35790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35790"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2024-2004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2004"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2024-0397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0397"
},
{
"name": "CVE-2024-4030",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4030"
},
{
"name": "CVE-2024-4032",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4032"
},
{
"name": "CVE-2024-3596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3596"
},
{
"name": "CVE-2024-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0450"
},
{
"name": "CVE-2024-25062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25062"
},
{
"name": "CVE-2024-26458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26458"
},
{
"name": "CVE-2024-26461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26461"
},
{
"name": "CVE-2024-28834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28834"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2024-35195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35195"
},
{
"name": "CVE-2024-36945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36945"
},
{
"name": "CVE-2024-38540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38540"
},
{
"name": "CVE-2024-38541",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38541"
},
{
"name": "CVE-2023-4641",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4641"
},
{
"name": "CVE-2024-0567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0567"
},
{
"name": "CVE-2024-22365",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22365"
},
{
"name": "CVE-2024-21137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21137"
},
{
"name": "CVE-2024-0760",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0760"
},
{
"name": "CVE-2024-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1737"
},
{
"name": "CVE-2024-1975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1975"
},
{
"name": "CVE-2024-28835",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28835"
},
{
"name": "CVE-2024-6923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6923"
},
{
"name": "CVE-2024-3219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3219"
},
{
"name": "CVE-2024-36908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36908"
},
{
"name": "CVE-2024-27402",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27402"
},
{
"name": "CVE-2024-37891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37891"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2024-38808",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38808"
},
{
"name": "CVE-2024-38809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38809"
},
{
"name": "CVE-2024-42230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42230"
},
{
"name": "CVE-2024-38807",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38807"
},
{
"name": "CVE-2024-6232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6232"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2024-38816",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38816"
},
{
"name": "CVE-2022-48893",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48893"
},
{
"name": "CVE-2024-42322",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42322"
},
{
"name": "CVE-2024-7264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7264"
},
{
"name": "CVE-2023-5841",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5841"
},
{
"name": "CVE-2024-34459",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34459"
},
{
"name": "CVE-2024-8096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8096"
},
{
"name": "CVE-2023-6246",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6246"
},
{
"name": "CVE-2024-46812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46812"
},
{
"name": "CVE-2024-46821",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46821"
},
{
"name": "CVE-2024-46751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46751"
},
{
"name": "CVE-2024-46753",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46753"
},
{
"name": "CVE-2024-46774",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46774"
},
{
"name": "CVE-2024-46787",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46787"
},
{
"name": "CVE-2022-21454",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21454"
},
{
"name": "CVE-2024-21193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21193"
},
{
"name": "CVE-2024-21194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21194"
},
{
"name": "CVE-2024-21196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21196"
},
{
"name": "CVE-2024-21197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21197"
},
{
"name": "CVE-2024-21198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21198"
},
{
"name": "CVE-2024-21199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21199"
},
{
"name": "CVE-2024-21201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21201"
},
{
"name": "CVE-2024-21207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21207"
},
{
"name": "CVE-2024-21209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21209"
},
{
"name": "CVE-2024-21212",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21212"
},
{
"name": "CVE-2024-21213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21213"
},
{
"name": "CVE-2024-21219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21219"
},
{
"name": "CVE-2024-21236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21236"
},
{
"name": "CVE-2024-21239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21239"
},
{
"name": "CVE-2024-21241",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21241"
},
{
"name": "CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"name": "CVE-2024-9143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9143"
},
{
"name": "CVE-2024-38819",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38819"
},
{
"name": "CVE-2024-38820",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38820"
},
{
"name": "CVE-2024-10487",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10487"
},
{
"name": "CVE-2024-10458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10458"
},
{
"name": "CVE-2024-10459",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10459"
},
{
"name": "CVE-2024-10460",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10460"
},
{
"name": "CVE-2024-10461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10461"
},
{
"name": "CVE-2024-10462",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10462"
},
{
"name": "CVE-2024-10463",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10463"
},
{
"name": "CVE-2024-10464",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10464"
},
{
"name": "CVE-2024-10465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10465"
},
{
"name": "CVE-2024-10466",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10466"
},
{
"name": "CVE-2024-10467",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10467"
},
{
"name": "CVE-2024-10468",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10468"
},
{
"name": "CVE-2024-34447",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34447"
},
{
"name": "CVE-2024-38286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38286"
},
{
"name": "CVE-2024-7592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7592"
},
{
"name": "CVE-2024-8088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8088"
},
{
"name": "CVE-2024-9681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9681"
},
{
"name": "CVE-2024-11168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11168"
},
{
"name": "CVE-2024-38828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38828"
},
{
"name": "CVE-2024-46816",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46816"
},
{
"name": "CVE-2024-11395",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11395"
},
{
"name": "CVE-2024-49960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49960"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-11691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11691"
},
{
"name": "CVE-2024-11692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11692"
},
{
"name": "CVE-2024-11693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11693"
},
{
"name": "CVE-2024-11694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11694"
},
{
"name": "CVE-2024-11695",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11695"
},
{
"name": "CVE-2024-11696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11696"
},
{
"name": "CVE-2024-11697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11697"
},
{
"name": "CVE-2024-11698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11698"
},
{
"name": "CVE-2024-11699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11699"
},
{
"name": "CVE-2024-11700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11700"
},
{
"name": "CVE-2024-11701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11701"
},
{
"name": "CVE-2024-11702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11702"
},
{
"name": "CVE-2024-11703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11703"
},
{
"name": "CVE-2024-11704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11704"
},
{
"name": "CVE-2024-11705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11705"
},
{
"name": "CVE-2024-11706",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11706"
},
{
"name": "CVE-2024-11708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11708"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-11053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11053"
},
{
"name": "CVE-2024-10041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10041"
},
{
"name": "CVE-2024-10963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10963"
},
{
"name": "CVE-2024-47554",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47554"
},
{
"name": "CVE-2024-49989",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49989"
},
{
"name": "CVE-2024-50125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50125"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2025-0237",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0237"
},
{
"name": "CVE-2025-0238",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0238"
},
{
"name": "CVE-2025-0239",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0239"
},
{
"name": "CVE-2025-0240",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0240"
},
{
"name": "CVE-2025-0241",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0241"
},
{
"name": "CVE-2025-0242",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0242"
},
{
"name": "CVE-2025-0243",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0243"
},
{
"name": "CVE-2025-0245",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0245"
},
{
"name": "CVE-2025-0247",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0247"
},
{
"name": "CVE-2025-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0434"
},
{
"name": "CVE-2025-0435",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0435"
},
{
"name": "CVE-2025-0436",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0436"
},
{
"name": "CVE-2025-0437",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0437"
},
{
"name": "CVE-2025-0438",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0438"
},
{
"name": "CVE-2025-0439",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0439"
},
{
"name": "CVE-2025-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0440"
},
{
"name": "CVE-2025-0441",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0441"
},
{
"name": "CVE-2025-0442",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0442"
},
{
"name": "CVE-2025-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0443"
},
{
"name": "CVE-2025-0446",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0446"
},
{
"name": "CVE-2025-0447",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0447"
},
{
"name": "CVE-2025-0448",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0448"
},
{
"name": "CVE-2025-21523",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21523"
},
{
"name": "CVE-2025-0612",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0612"
},
{
"name": "CVE-2025-23083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23083"
},
{
"name": "CVE-2025-23084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23084"
},
{
"name": "CVE-2025-23085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23085"
},
{
"name": "CVE-2025-0938",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0938"
},
{
"name": "CVE-2025-0444",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0444"
},
{
"name": "CVE-2025-0445",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0445"
},
{
"name": "CVE-2025-0451",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0451"
},
{
"name": "CVE-2025-0762",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0762"
},
{
"name": "CVE-2025-1009",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1009"
},
{
"name": "CVE-2025-1010",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1010"
},
{
"name": "CVE-2025-1011",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1011"
},
{
"name": "CVE-2025-1012",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1012"
},
{
"name": "CVE-2025-1013",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1013"
},
{
"name": "CVE-2025-1014",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1014"
},
{
"name": "CVE-2024-56664",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56664"
},
{
"name": "CVE-2025-1016",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1016"
},
{
"name": "CVE-2025-1017",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1017"
},
{
"name": "CVE-2025-1018",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1018"
},
{
"name": "CVE-2025-1019",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1019"
},
{
"name": "CVE-2025-1020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1020"
},
{
"name": "CVE-2025-0167",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0167"
},
{
"name": "CVE-2025-0725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0725"
},
{
"name": "CVE-2024-47535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47535"
},
{
"name": "CVE-2024-50258",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50258"
},
{
"name": "CVE-2024-53203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53203"
},
{
"name": "CVE-2024-53128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53128"
},
{
"name": "CVE-2025-0995",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0995"
},
{
"name": "CVE-2025-0996",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0996"
},
{
"name": "CVE-2025-0997",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0997"
},
{
"name": "CVE-2025-0998",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0998"
},
{
"name": "CVE-2024-13176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13176"
},
{
"name": "CVE-2025-1414",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1414"
},
{
"name": "CVE-2025-0999",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0999"
},
{
"name": "CVE-2025-1006",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1006"
},
{
"name": "CVE-2025-1426",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1426"
},
{
"name": "CVE-2024-56751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56751"
},
{
"name": "CVE-2023-39017",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39017"
},
{
"name": "CVE-2025-1795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1795"
},
{
"name": "CVE-2025-1914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1914"
},
{
"name": "CVE-2025-1915",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1915"
},
{
"name": "CVE-2025-1916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1916"
},
{
"name": "CVE-2025-1917",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1917"
},
{
"name": "CVE-2025-1918",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1918"
},
{
"name": "CVE-2025-1919",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1919"
},
{
"name": "CVE-2025-1921",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1921"
},
{
"name": "CVE-2025-1922",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1922"
},
{
"name": "CVE-2025-1923",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1923"
},
{
"name": "CVE-2025-1930",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1930"
},
{
"name": "CVE-2025-1931",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1931"
},
{
"name": "CVE-2025-1932",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1932"
},
{
"name": "CVE-2025-1933",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1933"
},
{
"name": "CVE-2025-1934",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1934"
},
{
"name": "CVE-2025-1935",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1935"
},
{
"name": "CVE-2025-1936",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1936"
},
{
"name": "CVE-2025-1937",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1937"
},
{
"name": "CVE-2025-1938",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1938"
},
{
"name": "CVE-2025-1939",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1939"
},
{
"name": "CVE-2025-1940",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1940"
},
{
"name": "CVE-2025-1941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1941"
},
{
"name": "CVE-2025-1942",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1942"
},
{
"name": "CVE-2025-1943",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1943"
},
{
"name": "CVE-2025-1920",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1920"
},
{
"name": "CVE-2025-2135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2135"
},
{
"name": "CVE-2025-2136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2136"
},
{
"name": "CVE-2025-2137",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2137"
},
{
"name": "CVE-2025-24813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24813"
},
{
"name": "CVE-2024-6763",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6763"
},
{
"name": "CVE-2022-49043",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49043"
},
{
"name": "CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"name": "CVE-2024-51744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-51744"
},
{
"name": "CVE-2025-24970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
},
{
"name": "CVE-2025-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25193"
},
{
"name": "CVE-2024-45772",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45772"
},
{
"name": "CVE-2025-2476",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2476"
},
{
"name": "CVE-2025-2857",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2857"
},
{
"name": "CVE-2024-45337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45337"
},
{
"name": "CVE-2025-22870",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22870"
},
{
"name": "CVE-2025-2783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2783"
},
{
"name": "CVE-2022-49063",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49063"
},
{
"name": "CVE-2022-49535",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49535"
},
{
"name": "CVE-2024-56171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56171"
},
{
"name": "CVE-2025-27113",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27113"
},
{
"name": "CVE-2025-3066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3066"
},
{
"name": "CVE-2025-3067",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3067"
},
{
"name": "CVE-2025-3068",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3068"
},
{
"name": "CVE-2025-3071",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3071"
},
{
"name": "CVE-2025-3072",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3072"
},
{
"name": "CVE-2025-3073",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3073"
},
{
"name": "CVE-2025-3074",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3074"
},
{
"name": "CVE-2025-3028",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3028"
},
{
"name": "CVE-2025-3029",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3029"
},
{
"name": "CVE-2025-3030",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3030"
},
{
"name": "CVE-2025-3031",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3031"
},
{
"name": "CVE-2025-3032",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3032"
},
{
"name": "CVE-2025-3033",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3033"
},
{
"name": "CVE-2025-3034",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3034"
},
{
"name": "CVE-2025-3035",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3035"
},
{
"name": "CVE-2024-54458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54458"
},
{
"name": "CVE-2025-3608",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3608"
},
{
"name": "CVE-2025-21574",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21574"
},
{
"name": "CVE-2025-21575",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21575"
},
{
"name": "CVE-2025-21577",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21577"
},
{
"name": "CVE-2025-21579",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21579"
},
{
"name": "CVE-2025-21580",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21580"
},
{
"name": "CVE-2025-21581",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21581"
},
{
"name": "CVE-2025-21584",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21584"
},
{
"name": "CVE-2025-21585",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21585"
},
{
"name": "CVE-2025-21588",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21588"
},
{
"name": "CVE-2025-30681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30681"
},
{
"name": "CVE-2025-30682",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30682"
},
{
"name": "CVE-2025-30683",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30683"
},
{
"name": "CVE-2025-30684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30684"
},
{
"name": "CVE-2025-30685",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30685"
},
{
"name": "CVE-2025-30687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30687"
},
{
"name": "CVE-2025-30688",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30688"
},
{
"name": "CVE-2025-30689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30689"
},
{
"name": "CVE-2025-30693",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30693"
},
{
"name": "CVE-2025-30695",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30695"
},
{
"name": "CVE-2025-30696",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30696"
},
{
"name": "CVE-2025-30699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30699"
},
{
"name": "CVE-2025-30703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30703"
},
{
"name": "CVE-2025-30704",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30704"
},
{
"name": "CVE-2025-30705",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30705"
},
{
"name": "CVE-2025-30715",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30715"
},
{
"name": "CVE-2025-30721",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30721"
},
{
"name": "CVE-2025-21839",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21839"
},
{
"name": "CVE-2025-3619",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3619"
},
{
"name": "CVE-2025-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3620"
},
{
"name": "CVE-2025-24928",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24928"
},
{
"name": "CVE-2025-21941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21941"
},
{
"name": "CVE-2025-21956",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21956"
},
{
"name": "CVE-2025-21957",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21957"
},
{
"name": "CVE-2025-21959",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21959"
},
{
"name": "CVE-2025-21962",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21962"
},
{
"name": "CVE-2025-21963",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21963"
},
{
"name": "CVE-2025-21964",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21964"
},
{
"name": "CVE-2025-21968",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21968"
},
{
"name": "CVE-2025-21970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21970"
},
{
"name": "CVE-2025-21975",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21975"
},
{
"name": "CVE-2025-21981",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21981"
},
{
"name": "CVE-2025-21991",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21991"
},
{
"name": "CVE-2025-21992",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21992"
},
{
"name": "CVE-2025-21994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21994"
},
{
"name": "CVE-2025-21996",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21996"
},
{
"name": "CVE-2025-21999",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21999"
},
{
"name": "CVE-2025-22004",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22004"
},
{
"name": "CVE-2025-22005",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22005"
},
{
"name": "CVE-2025-22007",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22007"
},
{
"name": "CVE-2025-22008",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22008"
},
{
"name": "CVE-2025-22010",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22010"
},
{
"name": "CVE-2025-22014",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22014"
},
{
"name": "CVE-2024-12798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12798"
},
{
"name": "CVE-2024-12801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12801"
},
{
"name": "CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"name": "CVE-2025-22871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22871"
},
{
"name": "CVE-2025-22235",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22235"
},
{
"name": "CVE-2025-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2312"
},
{
"name": "CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"name": "CVE-2025-4050",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4050"
},
{
"name": "CVE-2025-4051",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4051"
},
{
"name": "CVE-2025-4052",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4052"
},
{
"name": "CVE-2025-4096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4096"
},
{
"name": "CVE-2025-2817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2817"
},
{
"name": "CVE-2025-4082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4082"
},
{
"name": "CVE-2025-4083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4083"
},
{
"name": "CVE-2025-4085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4085"
},
{
"name": "CVE-2025-4087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4087"
},
{
"name": "CVE-2025-4088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4088"
},
{
"name": "CVE-2025-4089",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4089"
},
{
"name": "CVE-2025-4090",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4090"
},
{
"name": "CVE-2025-4091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4091"
},
{
"name": "CVE-2025-4092",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4092"
},
{
"name": "CVE-2023-53034",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53034"
},
{
"name": "CVE-2024-46742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46742"
},
{
"name": "CVE-2025-21853",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21853"
},
{
"name": "CVE-2025-22025",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22025"
},
{
"name": "CVE-2025-22027",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22027"
},
{
"name": "CVE-2025-22035",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22035"
},
{
"name": "CVE-2025-22044",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22044"
},
{
"name": "CVE-2025-22045",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22045"
},
{
"name": "CVE-2025-22050",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22050"
},
{
"name": "CVE-2025-22054",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22054"
},
{
"name": "CVE-2025-22055",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22055"
},
{
"name": "CVE-2025-22056",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22056"
},
{
"name": "CVE-2025-22060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22060"
},
{
"name": "CVE-2025-22063",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22063"
},
{
"name": "CVE-2025-22066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22066"
},
{
"name": "CVE-2025-22071",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22071"
},
{
"name": "CVE-2025-22073",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22073"
},
{
"name": "CVE-2025-22075",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22075"
},
{
"name": "CVE-2025-22079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22079"
},
{
"name": "CVE-2025-22081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22081"
},
{
"name": "CVE-2025-22086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22086"
},
{
"name": "CVE-2025-22089",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22089"
},
{
"name": "CVE-2025-22097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22097"
},
{
"name": "CVE-2025-23136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23136"
},
{
"name": "CVE-2025-23138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23138"
},
{
"name": "CVE-2025-37785",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37785"
},
{
"name": "CVE-2025-37838",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37838"
},
{
"name": "CVE-2025-38152",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38152"
},
{
"name": "CVE-2025-38575",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38575"
},
{
"name": "CVE-2025-38637",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38637"
},
{
"name": "CVE-2025-39728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39728"
},
{
"name": "CVE-2025-39735",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39735"
},
{
"name": "CVE-2025-27516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27516"
},
{
"name": "CVE-2025-29087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-29087"
},
{
"name": "CVE-2025-3277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3277"
},
{
"name": "CVE-2025-4609",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4609"
},
{
"name": "CVE-2025-4664",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4664"
},
{
"name": "CVE-2025-4372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4372"
},
{
"name": "CVE-2025-4516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4516"
},
{
"name": "CVE-2025-22233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22233"
},
{
"name": "CVE-2024-55549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55549"
},
{
"name": "CVE-2024-9287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9287"
},
{
"name": "CVE-2025-24855",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24855"
},
{
"name": "CVE-2025-4918",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4918"
},
{
"name": "CVE-2025-4919",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4919"
},
{
"name": "CVE-2025-41232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41232"
},
{
"name": "CVE-2025-23165",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23165"
},
{
"name": "CVE-2025-23166",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23166"
},
{
"name": "CVE-2025-5063",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5063"
},
{
"name": "CVE-2025-5064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5064"
},
{
"name": "CVE-2025-5065",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5065"
},
{
"name": "CVE-2025-5066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5066"
},
{
"name": "CVE-2025-5067",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5067"
},
{
"name": "CVE-2025-32414",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32414"
},
{
"name": "CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"name": "CVE-2022-49728",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49728"
},
{
"name": "CVE-2024-58093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58093"
},
{
"name": "CVE-2025-22018",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22018"
},
{
"name": "CVE-2025-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22020"
},
{
"name": "CVE-2025-22062",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22062"
},
{
"name": "CVE-2025-23145",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23145"
},
{
"name": "CVE-2025-37798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37798"
},
{
"name": "CVE-2025-37749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37749"
},
{
"name": "CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"name": "CVE-2025-5263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5263"
},
{
"name": "CVE-2025-5264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5264"
},
{
"name": "CVE-2025-5265",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5265"
},
{
"name": "CVE-2025-5266",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5266"
},
{
"name": "CVE-2025-5267",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5267"
},
{
"name": "CVE-2025-5268",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5268"
},
{
"name": "CVE-2025-5270",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5270"
},
{
"name": "CVE-2025-5271",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5271"
},
{
"name": "CVE-2025-5272",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5272"
},
{
"name": "CVE-2025-5281",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5281"
},
{
"name": "CVE-2025-5283",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5283"
},
{
"name": "CVE-2025-46701",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46701"
},
{
"name": "CVE-2025-22021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22021"
},
{
"name": "CVE-2025-23140",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23140"
},
{
"name": "CVE-2025-23142",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23142"
},
{
"name": "CVE-2025-23144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23144"
},
{
"name": "CVE-2025-23146",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23146"
},
{
"name": "CVE-2025-23147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23147"
},
{
"name": "CVE-2025-23148",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23148"
},
{
"name": "CVE-2025-23150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23150"
},
{
"name": "CVE-2025-23151",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23151"
},
{
"name": "CVE-2025-23156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23156"
},
{
"name": "CVE-2025-23157",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23157"
},
{
"name": "CVE-2025-23158",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23158"
},
{
"name": "CVE-2025-23159",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23159"
},
{
"name": "CVE-2025-23161",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23161"
},
{
"name": "CVE-2025-23163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23163"
},
{
"name": "CVE-2025-37738",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37738"
},
{
"name": "CVE-2025-37739",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37739"
},
{
"name": "CVE-2025-37740",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37740"
},
{
"name": "CVE-2025-37741",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37741"
},
{
"name": "CVE-2025-37742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37742"
},
{
"name": "CVE-2025-37756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37756"
},
{
"name": "CVE-2025-37757",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37757"
},
{
"name": "CVE-2025-37758",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37758"
},
{
"name": "CVE-2025-37765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37765"
},
{
"name": "CVE-2025-37766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37766"
},
{
"name": "CVE-2025-37767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37767"
},
{
"name": "CVE-2025-37768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37768"
},
{
"name": "CVE-2025-37770",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37770"
},
{
"name": "CVE-2025-37771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37771"
},
{
"name": "CVE-2025-37773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37773"
},
{
"name": "CVE-2025-37780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37780"
},
{
"name": "CVE-2025-37781",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37781"
},
{
"name": "CVE-2025-37787",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37787"
},
{
"name": "CVE-2025-37788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37788"
},
{
"name": "CVE-2025-37789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37789"
},
{
"name": "CVE-2025-37790",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37790"
},
{
"name": "CVE-2025-37792",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37792"
},
{
"name": "CVE-2025-37794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37794"
},
{
"name": "CVE-2025-37796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37796"
},
{
"name": "CVE-2025-37797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37797"
},
{
"name": "CVE-2025-37803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37803"
},
{
"name": "CVE-2025-37805",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37805"
},
{
"name": "CVE-2025-37808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37808"
},
{
"name": "CVE-2025-37810",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37810"
},
{
"name": "CVE-2025-37811",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37811"
},
{
"name": "CVE-2025-37812",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37812"
},
{
"name": "CVE-2025-37817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37817"
},
{
"name": "CVE-2025-37823",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37823"
},
{
"name": "CVE-2025-37824",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37824"
},
{
"name": "CVE-2025-37829",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37829"
},
{
"name": "CVE-2025-37830",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37830"
},
{
"name": "CVE-2025-37836",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37836"
},
{
"name": "CVE-2025-37839",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37839"
},
{
"name": "CVE-2025-37840",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37840"
},
{
"name": "CVE-2025-37841",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37841"
},
{
"name": "CVE-2025-37844",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37844"
},
{
"name": "CVE-2025-37850",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37850"
},
{
"name": "CVE-2025-37851",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37851"
},
{
"name": "CVE-2025-37857",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37857"
},
{
"name": "CVE-2025-37858",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37858"
},
{
"name": "CVE-2025-37859",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37859"
},
{
"name": "CVE-2025-37862",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37862"
},
{
"name": "CVE-2025-37867",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37867"
},
{
"name": "CVE-2025-37871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37871"
},
{
"name": "CVE-2025-37875",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37875"
},
{
"name": "CVE-2025-37881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37881"
},
{
"name": "CVE-2025-37883",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37883"
},
{
"name": "CVE-2025-37885",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37885"
},
{
"name": "CVE-2025-37889",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37889"
},
{
"name": "CVE-2025-37892",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37892"
},
{
"name": "CVE-2025-37937",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37937"
},
{
"name": "CVE-2025-37940",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37940"
},
{
"name": "CVE-2025-37982",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37982"
},
{
"name": "CVE-2025-37983",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37983"
},
{
"name": "CVE-2025-37985",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37985"
},
{
"name": "CVE-2025-37989",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37989"
},
{
"name": "CVE-2025-37819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37819"
},
{
"name": "CVE-2025-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37890"
},
{
"name": "CVE-2025-37905",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37905"
},
{
"name": "CVE-2025-37909",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37909"
},
{
"name": "CVE-2025-37911",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37911"
},
{
"name": "CVE-2025-37912",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37912"
},
{
"name": "CVE-2025-37913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37913"
},
{
"name": "CVE-2025-37914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37914"
},
{
"name": "CVE-2025-37915",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37915"
},
{
"name": "CVE-2025-37923",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37923"
},
{
"name": "CVE-2025-37927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37927"
},
{
"name": "CVE-2025-37930",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37930"
},
{
"name": "CVE-2025-37932",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37932"
},
{
"name": "CVE-2025-37949",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37949"
},
{
"name": "CVE-2025-37964",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37964"
},
{
"name": "CVE-2025-37967",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37967"
},
{
"name": "CVE-2025-37969",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37969"
},
{
"name": "CVE-2025-37970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37970"
},
{
"name": "CVE-2025-37990",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37990"
},
{
"name": "CVE-2025-37991",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37991"
},
{
"name": "CVE-2025-5068",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5068"
},
{
"name": "CVE-2025-5419",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5419"
},
{
"name": "CVE-2025-27144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27144"
},
{
"name": "CVE-2025-49709",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49709"
},
{
"name": "CVE-2025-49710",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49710"
},
{
"name": "CVE-2023-6779",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6779"
},
{
"name": "CVE-2023-6780",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6780"
},
{
"name": "CVE-2024-12133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12133"
},
{
"name": "CVE-2024-12243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12243"
},
{
"name": "CVE-2024-2236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2236"
},
{
"name": "CVE-2024-56433",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56433"
},
{
"name": "CVE-2025-0395",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0395"
},
{
"name": "CVE-2025-1390",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1390"
},
{
"name": "CVE-2025-29088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-29088"
},
{
"name": "CVE-2025-31115",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31115"
},
{
"name": "CVE-2025-4598",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4598"
},
{
"name": "CVE-2025-5958",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5958"
},
{
"name": "CVE-2025-5959",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5959"
},
{
"name": "CVE-2025-41234",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41234"
},
{
"name": "CVE-2025-49146",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49146"
},
{
"name": "CVE-2025-48988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48988"
},
{
"name": "CVE-2025-49124",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49124"
},
{
"name": "CVE-2025-49125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49125"
},
{
"name": "CVE-2025-6191",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6191"
},
{
"name": "CVE-2025-6192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6192"
},
{
"name": "CVE-2024-53427",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53427"
},
{
"name": "CVE-2024-56406",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56406"
},
{
"name": "CVE-2025-22872",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22872"
},
{
"name": "CVE-2025-4802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4802"
},
{
"name": "CVE-2022-49168",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49168"
},
{
"name": "CVE-2025-37998",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37998"
},
{
"name": "CVE-2023-42366",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42366"
},
{
"name": "CVE-2025-6424",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6424"
},
{
"name": "CVE-2025-6425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6425"
},
{
"name": "CVE-2025-6426",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6426"
},
{
"name": "CVE-2025-6427",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6427"
},
{
"name": "CVE-2025-6429",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6429"
},
{
"name": "CVE-2025-6430",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6430"
},
{
"name": "CVE-2025-6432",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6432"
},
{
"name": "CVE-2025-6433",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6433"
},
{
"name": "CVE-2025-6434",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6434"
},
{
"name": "CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"name": "CVE-2025-6555",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6555"
},
{
"name": "CVE-2025-6556",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6556"
},
{
"name": "CVE-2025-6557",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6557"
},
{
"name": "CVE-2025-6435",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6435"
},
{
"name": "CVE-2025-6436",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6436"
},
{
"name": "CVE-2025-6554",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6554"
},
{
"name": "CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"name": "CVE-2022-49636",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49636"
},
{
"name": "CVE-2025-37997",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37997"
},
{
"name": "CVE-2025-38000",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38000"
},
{
"name": "CVE-2025-38001",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38001"
},
{
"name": "CVE-2025-32462",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32462"
},
{
"name": "CVE-2025-52520",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52520"
},
{
"name": "CVE-2025-53506",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53506"
},
{
"name": "CVE-2024-47081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47081"
},
{
"name": "CVE-2025-3576",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3576"
},
{
"name": "CVE-2025-47268",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47268"
},
{
"name": "CVE-2025-37992",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37992"
},
{
"name": "CVE-2025-37994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37994"
},
{
"name": "CVE-2025-37995",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37995"
},
{
"name": "CVE-2025-38005",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38005"
},
{
"name": "CVE-2025-38009",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38009"
},
{
"name": "CVE-2025-38023",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38023"
},
{
"name": "CVE-2025-38024",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38024"
},
{
"name": "CVE-2025-38083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38083"
},
{
"name": "CVE-2025-22227",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22227"
},
{
"name": "CVE-2025-6558",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6558"
},
{
"name": "CVE-2025-7656",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7656"
},
{
"name": "CVE-2025-7657",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7657"
},
{
"name": "CVE-2025-30749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30749"
},
{
"name": "CVE-2025-30754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30754"
},
{
"name": "CVE-2025-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50059"
},
{
"name": "CVE-2025-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50106"
},
{
"name": "CVE-2025-50088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50088"
},
{
"name": "CVE-2025-48734",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48734"
},
{
"name": "CVE-2022-21546",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21546"
},
{
"name": "CVE-2020-16156",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-16156"
},
{
"name": "CVE-2025-8010",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8010"
},
{
"name": "CVE-2025-8011",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8011"
},
{
"name": "CVE-2025-8027",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8027"
},
{
"name": "CVE-2025-8028",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8028"
},
{
"name": "CVE-2025-8029",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8029"
},
{
"name": "CVE-2025-8030",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8030"
},
{
"name": "CVE-2025-8031",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8031"
},
{
"name": "CVE-2025-8032",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8032"
},
{
"name": "CVE-2025-8033",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8033"
},
{
"name": "CVE-2025-8034",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8034"
},
{
"name": "CVE-2025-8035",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8035"
},
{
"name": "CVE-2025-8036",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8036"
},
{
"name": "CVE-2025-8037",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8037"
},
{
"name": "CVE-2025-8038",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8038"
},
{
"name": "CVE-2025-8039",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8039"
},
{
"name": "CVE-2025-8040",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8040"
},
{
"name": "CVE-2025-8041",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8041"
},
{
"name": "CVE-2025-8043",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8043"
},
{
"name": "CVE-2025-8044",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8044"
},
{
"name": "CVE-2024-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23337"
},
{
"name": "CVE-2024-45339",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45339"
},
{
"name": "CVE-2024-47611",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47611"
},
{
"name": "CVE-2025-0913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0913"
},
{
"name": "CVE-2025-22874",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22874"
},
{
"name": "CVE-2025-32988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32988"
},
{
"name": "CVE-2025-32989",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32989"
},
{
"name": "CVE-2025-32990",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32990"
},
{
"name": "CVE-2025-38177",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38177"
},
{
"name": "CVE-2025-4673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4673"
},
{
"name": "CVE-2025-48060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48060"
},
{
"name": "CVE-2025-4877",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4877"
},
{
"name": "CVE-2025-4878",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4878"
},
{
"name": "CVE-2025-48924",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48924"
},
{
"name": "CVE-2025-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50181"
},
{
"name": "CVE-2025-5318",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5318"
},
{
"name": "CVE-2025-5372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5372"
},
{
"name": "CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"name": "CVE-2025-5915",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5915"
},
{
"name": "CVE-2025-5916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5916"
},
{
"name": "CVE-2025-5917",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5917"
},
{
"name": "CVE-2025-6069",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6069"
},
{
"name": "CVE-2025-6395",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6395"
},
{
"name": "CVE-2025-38094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38094"
},
{
"name": "CVE-2025-8194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8194"
},
{
"name": "CVE-2025-8292",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8292"
},
{
"name": "CVE-2025-7424",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7424"
},
{
"name": "CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"name": "CVE-2025-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50182"
},
{
"name": "CVE-2025-5889",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5889"
},
{
"name": "CVE-2025-8576",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8576"
},
{
"name": "CVE-2025-8577",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8577"
},
{
"name": "CVE-2025-8578",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8578"
},
{
"name": "CVE-2025-8579",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8579"
},
{
"name": "CVE-2025-8580",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8580"
},
{
"name": "CVE-2025-8581",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8581"
},
{
"name": "CVE-2025-8582",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8582"
},
{
"name": "CVE-2025-8583",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8583"
},
{
"name": "CVE-2025-27210",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27210"
},
{
"name": "CVE-2025-27817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27817"
},
{
"name": "CVE-2025-27818",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27818"
},
{
"name": "CVE-2025-8879",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8879"
},
{
"name": "CVE-2025-8880",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8880"
},
{
"name": "CVE-2025-8881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8881"
},
{
"name": "CVE-2025-8882",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8882"
},
{
"name": "CVE-2025-8901",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8901"
},
{
"name": "CVE-2025-48989",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48989"
},
{
"name": "CVE-2025-7339",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7339"
},
{
"name": "CVE-2025-7783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7783"
},
{
"name": "CVE-2021-32256",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32256"
},
{
"name": "CVE-2024-25260",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25260"
},
{
"name": "CVE-2025-1371",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1371"
},
{
"name": "CVE-2025-1376",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1376"
},
{
"name": "CVE-2025-1377",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1377"
},
{
"name": "CVE-2025-47273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47273"
},
{
"name": "CVE-2025-48964",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48964"
},
{
"name": "CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"name": "CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"name": "CVE-2025-41242",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41242"
},
{
"name": "CVE-2025-9132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9132"
},
{
"name": "CVE-2025-54988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54988"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2024-13009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13009"
},
{
"name": "CVE-2025-55668",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55668"
},
{
"name": "CVE-2025-4674",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4674"
},
{
"name": "CVE-2025-47907",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47907"
},
{
"name": "CVE-2025-52999",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
},
{
"name": "CVE-2025-55163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55163"
},
{
"name": "CVE-2025-8941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8941"
},
{
"name": "CVE-2025-9288",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9288"
},
{
"name": "CVE-2005-2541",
"url": "https://www.cve.org/CVERecord?id=CVE-2005-2541"
},
{
"name": "CVE-2008-5727",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5727"
},
{
"name": "CVE-2008-5728",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5728"
},
{
"name": "CVE-2008-5729",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5729"
},
{
"name": "CVE-2008-5730",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5730"
},
{
"name": "CVE-2008-5742",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5742"
},
{
"name": "CVE-2011-3374",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3374"
},
{
"name": "CVE-2014-4715",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4715"
},
{
"name": "CVE-2015-2214",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2214"
},
{
"name": "CVE-2016-0682",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0682"
},
{
"name": "CVE-2016-0689",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0689"
},
{
"name": "CVE-2016-0692",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0692"
},
{
"name": "CVE-2016-0694",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0694"
},
{
"name": "CVE-2016-2149",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2149"
},
{
"name": "CVE-2016-2160",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2160"
},
{
"name": "CVE-2016-3418",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3418"
},
{
"name": "CVE-2017-10140",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10140"
},
{
"name": "CVE-2017-12195",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12195"
},
{
"name": "CVE-2017-12629",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12629"
},
{
"name": "CVE-2017-3604",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3604"
},
{
"name": "CVE-2017-3605",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3605"
},
{
"name": "CVE-2017-3606",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3606"
},
{
"name": "CVE-2017-3607",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3607"
},
{
"name": "CVE-2017-3608",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3608"
},
{
"name": "CVE-2017-3609",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3609"
},
{
"name": "CVE-2017-3610",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3610"
},
{
"name": "CVE-2017-3611",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3611"
},
{
"name": "CVE-2017-3612",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3612"
},
{
"name": "CVE-2017-3613",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3613"
},
{
"name": "CVE-2017-3614",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3614"
},
{
"name": "CVE-2017-3615",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3615"
},
{
"name": "CVE-2017-3616",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3616"
},
{
"name": "CVE-2017-3617",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3617"
},
{
"name": "CVE-2018-1000169",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000169"
},
{
"name": "CVE-2018-1196",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1196"
},
{
"name": "CVE-2018-1273",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1273"
},
{
"name": "CVE-2019-10782",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10782"
},
{
"name": "CVE-2019-9658",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9658"
},
{
"name": "CVE-2020-2981",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2981"
},
{
"name": "CVE-2021-20298",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20298"
},
{
"name": "CVE-2021-20304",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20304"
},
{
"name": "CVE-2021-22055",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22055"
},
{
"name": "CVE-2021-23169",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23169"
},
{
"name": "CVE-2021-3236",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3236"
},
{
"name": "CVE-2022-0635",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0635"
},
{
"name": "CVE-2022-0667",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0667"
},
{
"name": "CVE-2022-3219",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3219"
},
{
"name": "CVE-2022-39046",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39046"
},
{
"name": "CVE-2022-42010",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42010"
},
{
"name": "CVE-2022-42011",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42011"
},
{
"name": "CVE-2022-42012",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42012"
},
{
"name": "CVE-2022-44638",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-44638"
},
{
"name": "CVE-2023-31437",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31437"
},
{
"name": "CVE-2023-31438",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31438"
},
{
"name": "CVE-2023-31439",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31439"
},
{
"name": "CVE-2023-37769",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-37769"
},
{
"name": "CVE-2023-39810",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39810"
},
{
"name": "CVE-2023-4156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4156"
},
{
"name": "CVE-2023-4320",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4320"
},
{
"name": "CVE-2023-43785",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43785"
},
{
"name": "CVE-2023-43786",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43786"
},
{
"name": "CVE-2023-43787",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43787"
},
{
"name": "CVE-2023-46129",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46129"
},
{
"name": "CVE-2023-47039",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47039"
},
{
"name": "CVE-2023-5189",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5189"
},
{
"name": "CVE-2024-11584",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11584"
},
{
"name": "CVE-2024-21742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21742"
},
{
"name": "CVE-2024-22047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22047"
},
{
"name": "CVE-2024-2397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2397"
},
{
"name": "CVE-2024-26462",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26462"
},
{
"name": "CVE-2024-31047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31047"
},
{
"name": "CVE-2024-3220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3220"
},
{
"name": "CVE-2024-58251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58251"
},
{
"name": "CVE-2024-6174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6174"
},
{
"name": "CVE-2024-7012",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7012"
},
{
"name": "CVE-2025-1352",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1352"
},
{
"name": "CVE-2025-1365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1365"
},
{
"name": "CVE-2025-1372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1372"
},
{
"name": "CVE-2025-24294",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24294"
},
{
"name": "CVE-2025-26519",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-26519"
},
{
"name": "CVE-2025-27587",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27587"
},
{
"name": "CVE-2025-30258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30258"
},
{
"name": "CVE-2025-31672",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31672"
},
{
"name": "CVE-2025-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40909"
},
{
"name": "CVE-2025-43857",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43857"
},
{
"name": "CVE-2025-45582",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-45582"
},
{
"name": "CVE-2025-45768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-45768"
},
{
"name": "CVE-2025-46392",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46392"
},
{
"name": "CVE-2025-46394",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46394"
},
{
"name": "CVE-2025-49795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49795"
},
{
"name": "CVE-2025-5115",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5115"
},
{
"name": "CVE-2025-5222",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5222"
},
{
"name": "CVE-2025-5278",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5278"
},
{
"name": "CVE-2025-53864",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53864"
},
{
"name": "CVE-2025-6170",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6170"
},
{
"name": "CVE-2025-6297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6297"
},
{
"name": "CVE-2025-7962",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7962"
},
{
"name": "CVE-2025-8058",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8058"
},
{
"name": "CVE-2025-8262",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8262"
},
{
"name": "CVE-2025-8732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8732"
},
{
"name": "CVE-2025-8885",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8885"
},
{
"name": "CVE-2025-8916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8916"
},
{
"name": "CVE-2025-9179",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9179"
},
{
"name": "CVE-2025-9180",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9180"
},
{
"name": "CVE-2025-9181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9181"
},
{
"name": "CVE-2025-9182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9182"
},
{
"name": "CVE-2025-9183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9183"
},
{
"name": "CVE-2025-9184",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9184"
},
{
"name": "CVE-2025-9185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9185"
},
{
"name": "CVE-2025-9187",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9187"
},
{
"name": "CVE-2025-9308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9308"
}
],
"initial_release_date": "2025-09-05T00:00:00",
"last_revision_date": "2025-09-05T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0756",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-09-05T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits VMware. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware",
"vendor_advisories": [
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36093",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36093"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36102",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36102"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36101",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36101"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36100",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36100"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36105",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36105"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36091",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36091"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36078",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36078"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36107",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36107"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36094",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36094"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36097",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36097"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-46",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36104"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36108",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36108"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36095",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36095"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-09",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36090"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36096",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36096"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36106",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36106"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36109",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36109"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36098",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36098"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-68",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36111"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36103",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36103"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36099",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36099"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36092",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36092"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36110",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36110"
}
]
}
CERTFR-2024-AVI-1015
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Les vulnérabilités CVE-2024-47875 et CVE-2024-45801 n'ont pas de correctif pour Sterling Connect:Direct Web Services versions 6.1.x et 6.2.x
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | QRadar | QRadar Pre-Validation App versions antérieures à 2.0.1 | ||
| IBM | QRadar | QRadar Pulse App versions antérieures à 2.2.15 | ||
| IBM | WebSphere | WebSphere Hybrid Edition sans le correctif APAR PH63533 | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.2.x antérieures à 6.2.0.25 | ||
| IBM | AIX | AIX version 7.3 sans le correctif bind_fix27/73bind918.tar | ||
| IBM | VIOS | VIOS version 3.1 sans le correctif bind_fix27/72bind918.tar | ||
| IBM | WebSphere | WebSphere Application Server Liberty sans le correctif APAR PH63533 | ||
| IBM | Cloud Pak System | Cloud Pak System versions antérieures à 2.3.5.0 pour Power avec le correctif PH60195/PH61002 | ||
| IBM | AIX | AIX version 7.2 sans le correctif bind_fix27/72bind918.tar | ||
| IBM | VIOS | VIOS version 4.1 sans le correctif bind_fix27/73bind918.tar | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.1.x antérieures à 6.1.0.26 | ||
| IBM | Cloud Pak System | Cloud Pak System versions antérieures à 2.3.4.1 pour Intel avec le correctif PH60195/PH61002 | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.3.x antérieures à 6.3.0.11 | ||
| IBM | QRadar | QRadar User Behavior Analytics versions antérieures à 4.1.17 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "QRadar Pre-Validation App versions ant\u00e9rieures \u00e0 2.0.1",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Pulse App versions ant\u00e9rieures \u00e0 2.2.15",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Hybrid Edition sans le correctif APAR PH63533",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.2.x ant\u00e9rieures \u00e0 6.2.0.25",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.3 sans le correctif bind_fix27/73bind918.tar",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 3.1 sans le correctif bind_fix27/72bind918.tar",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server Liberty sans le correctif APAR PH63533",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cloud Pak System versions ant\u00e9rieures \u00e0 2.3.5.0 pour Power avec le correctif PH60195/PH61002",
"product": {
"name": "Cloud Pak System",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.2 sans le correctif bind_fix27/72bind918.tar",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 4.1 sans le correctif bind_fix27/73bind918.tar",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.1.x ant\u00e9rieures \u00e0 6.1.0.26",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cloud Pak System versions ant\u00e9rieures \u00e0 2.3.4.1 pour Intel avec le correctif PH60195/PH61002",
"product": {
"name": "Cloud Pak System",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.3.x ant\u00e9rieures \u00e0 6.3.0.11",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar User Behavior Analytics versions ant\u00e9rieures \u00e0 4.1.17",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "Les vuln\u00e9rabilit\u00e9s CVE-2024-47875 et CVE-2024-45801 n\u0027ont pas de correctif pour Sterling Connect:Direct Web Services versions 6.1.x et 6.2.x",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-37891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37891"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2024-47831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47831"
},
{
"name": "CVE-2024-4076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4076"
},
{
"name": "CVE-2018-14040",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14040"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2024-34351",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34351"
},
{
"name": "CVE-2024-34069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34069"
},
{
"name": "CVE-2024-1975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1975"
},
{
"name": "CVE-2024-0760",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0760"
},
{
"name": "CVE-2024-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1737"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2018-20676",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20676"
},
{
"name": "CVE-2024-1135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1135"
},
{
"name": "CVE-2024-46982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46982"
},
{
"name": "CVE-2018-20677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20677"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2024-45801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45801"
},
{
"name": "CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"name": "CVE-2023-51775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51775"
},
{
"name": "CVE-2024-5569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5569"
},
{
"name": "CVE-2024-47875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47875"
},
{
"name": "CVE-2018-14041",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14041"
},
{
"name": "CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"name": "CVE-2016-10735",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10735"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2024-34064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34064"
},
{
"name": "CVE-2024-38816",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38816"
},
{
"name": "CVE-2024-22354",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22354"
},
{
"name": "CVE-2024-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39689"
},
{
"name": "CVE-2023-26159",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26159"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2019-8331",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8331"
}
],
"initial_release_date": "2024-11-22T00:00:00",
"last_revision_date": "2024-11-22T00:00:00",
"links": [],
"reference": "CERTFR-2024-AVI-1015",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-11-22T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-11-20",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176657",
"url": "https://www.ibm.com/support/pages/node/7176657"
},
{
"published_at": "2024-11-20",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176642",
"url": "https://www.ibm.com/support/pages/node/7176642"
},
{
"published_at": "2024-11-20",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176660",
"url": "https://www.ibm.com/support/pages/node/7176660"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176201",
"url": "https://www.ibm.com/support/pages/node/7176201"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176391",
"url": "https://www.ibm.com/support/pages/node/7176391"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176392",
"url": "https://www.ibm.com/support/pages/node/7176392"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176386",
"url": "https://www.ibm.com/support/pages/node/7176386"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176389",
"url": "https://www.ibm.com/support/pages/node/7176389"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176451",
"url": "https://www.ibm.com/support/pages/node/7176451"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176388",
"url": "https://www.ibm.com/support/pages/node/7176388"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176205",
"url": "https://www.ibm.com/support/pages/node/7176205"
}
]
}
fkie_cve-2024-0760
Vulnerability from fkie_nvd
Published
2024-07-23 15:15
Modified
2024-11-21 08:47
Severity ?
Summary
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack.
This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.
References
| URL | Tags | ||
|---|---|---|---|
| security-officer@isc.org | http://www.openwall.com/lists/oss-security/2024/07/23/1 | ||
| security-officer@isc.org | http://www.openwall.com/lists/oss-security/2024/07/31/2 | ||
| security-officer@isc.org | https://kb.isc.org/docs/cve-2024-0760 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2024/07/23/1 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://kb.isc.org/docs/cve-2024-0760 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://security.netapp.com/advisory/ntap-20240731-0004/ |
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. \nThis issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1."
},
{
"lang": "es",
"value": "Un cliente malintencionado puede enviar muchos mensajes DNS a trav\u00e9s de TCP, lo que podr\u00eda provocar que el servidor se vuelva inestable mientras el ataque est\u00e1 en curso. El servidor puede recuperarse una vez que cese el ataque. El uso de ACL no mitigar\u00e1 el ataque. Este problema afecta a las versiones 9.18.1 a 9.18.27, 9.19.0 a 9.19.24 y 9.18.11-S1 a 9.18.27-S1 de BIND 9."
}
],
"id": "CVE-2024-0760",
"lastModified": "2024-11-21T08:47:18.850",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "security-officer@isc.org",
"type": "Secondary"
}
]
},
"published": "2024-07-23T15:15:03.520",
"references": [
{
"source": "security-officer@isc.org",
"url": "http://www.openwall.com/lists/oss-security/2024/07/23/1"
},
{
"source": "security-officer@isc.org",
"url": "http://www.openwall.com/lists/oss-security/2024/07/31/2"
},
{
"source": "security-officer@isc.org",
"url": "https://kb.isc.org/docs/cve-2024-0760"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openwall.com/lists/oss-security/2024/07/23/1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://kb.isc.org/docs/cve-2024-0760"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.netapp.com/advisory/ntap-20240731-0004/"
}
],
"sourceIdentifier": "security-officer@isc.org",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-770"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
WID-SEC-W-2024-1700
Vulnerability from csaf_certbund
Published
2024-07-23 22:00
Modified
2025-01-12 23:00
Summary
Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
BIND (Berkeley Internet Name Domain) ist ein Open-Source-Softwarepaket, das einen Domain-Name-System-Server implementiert.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Internet Systems Consortium BIND ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Sonstiges
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "BIND (Berkeley Internet Name Domain) ist ein Open-Source-Softwarepaket, das einen Domain-Name-System-Server implementiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Internet Systems Consortium BIND ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1700 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1700.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1700 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1700"
},
{
"category": "external",
"summary": "OSS Security Mailing List vom 2024-07-23",
"url": "https://seclists.org/oss-sec/2024/q3/101"
},
{
"category": "external",
"summary": "BIND Security Advisory vom 2024-07-23",
"url": "https://kb.isc.org/docs/cve-2024-0760"
},
{
"category": "external",
"summary": "BIND Security Advisory vom 2024-07-23",
"url": "https://kb.isc.org/docs/cve-2024-1737"
},
{
"category": "external",
"summary": "BIND Security Advisory vom 2024-07-23",
"url": "https://kb.isc.org/docs/cve-2024-1975"
},
{
"category": "external",
"summary": "BIND Security Advisory vom 2024-07-23",
"url": "https://kb.isc.org/docs/cve-2024-4076"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6909-1 vom 2024-07-23",
"url": "https://ubuntu.com/security/notices/USN-6909-1"
},
{
"category": "external",
"summary": "Infoblox Advisory",
"url": "https://support.infoblox.com/s/article/000009904"
},
{
"category": "external",
"summary": "Infoblox Advisory",
"url": "https://support.infoblox.com/s/article/000009906"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5734 vom 2024-07-26",
"url": "https://lists.debian.org/debian-security-announce/2024/msg00145.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2636-1 vom 2024-07-30",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/019038.html"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-8AF1780FDF vom 2024-07-31",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-8af1780fdf"
},
{
"category": "external",
"summary": "NetApp Security Advisory NTAP-20240731-0003 vom 2024-07-31",
"url": "https://security.netapp.com/advisory/ntap-20240731-0003/"
},
{
"category": "external",
"summary": "NetApp Security Advisory NTAP-20240731-0002 vom 2024-07-31",
"url": "https://security.netapp.com/advisory/ntap-20240731-0002/"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-56AE6C2C7A vom 2024-07-31",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-56ae6c2c7a"
},
{
"category": "external",
"summary": "NetApp Security Advisory NTAP-20240731-0001 vom 2024-07-31",
"url": "https://security.netapp.com/advisory/ntap-20240731-0001/"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-EF8A7031E7 vom 2024-08-01",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-ef8a7031e7"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6909-2 vom 2024-08-01",
"url": "https://ubuntu.com/security/notices/USN-6909-2"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2810-1 vom 2024-08-07",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019125.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2811-1 vom 2024-08-07",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019124.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2863-1 vom 2024-08-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019158.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2863-1 vom 2024-08-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019159.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2863-1 vom 2024-08-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019160.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2862-1 vom 2024-08-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019161.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2868-1 vom 2024-08-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019165.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5231 vom 2024-08-12",
"url": "https://access.redhat.com/errata/RHSA-2024:5231"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2616 vom 2024-08-13",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2616.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5231 vom 2024-08-13",
"url": "https://linux.oracle.com/errata/ELSA-2024-5231.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5390 vom 2024-08-15",
"url": "https://access.redhat.com/errata/RHSA-2024:5390"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5390 vom 2024-08-14",
"url": "https://linux.oracle.com/errata/ELSA-2024-5390.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5418 vom 2024-08-15",
"url": "https://access.redhat.com/errata/RHSA-2024:5418"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6909-3 vom 2024-08-15",
"url": "https://ubuntu.com/security/notices/USN-6909-3"
},
{
"category": "external",
"summary": "F5 Security Advisory K000140732 vom 2024-08-17",
"url": "https://my.f5.com/manage/s/article/K000140732"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5524 vom 2024-08-19",
"url": "https://access.redhat.com/errata/RHSA-2024:5524"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5525 vom 2024-08-19",
"url": "https://access.redhat.com/errata/RHSA-2024:5525"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5524 vom 2024-08-20",
"url": "http://linux.oracle.com/errata/ELSA-2024-5524.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5655 vom 2024-08-21",
"url": "https://access.redhat.com/errata/RHSA-2024:5655"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:5231 vom 2024-08-21",
"url": "https://errata.build.resf.org/RLSA-2024:5231"
},
{
"category": "external",
"summary": "F5 Security Advisory K000140745 vom 2024-08-22",
"url": "https://my.f5.com/manage/s/article/K000140745"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5813 vom 2024-08-26",
"url": "https://access.redhat.com/errata/RHSA-2024:5813"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5871 vom 2024-08-27",
"url": "https://access.redhat.com/errata/RHSA-2024:5871"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5838 vom 2024-08-26",
"url": "https://access.redhat.com/errata/RHSA-2024:5838"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5907 vom 2024-08-28",
"url": "https://access.redhat.com/errata/RHSA-2024:5907"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5894 vom 2024-08-27",
"url": "https://access.redhat.com/errata/RHSA-2024:5894"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5908 vom 2024-08-28",
"url": "https://access.redhat.com/errata/RHSA-2024:5908"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5930 vom 2024-08-28",
"url": "https://access.redhat.com/errata/RHSA-2024:5930"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6004 vom 2024-09-04",
"url": "https://access.redhat.com/errata/RHSA-2024:6004"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6009 vom 2024-09-04",
"url": "https://access.redhat.com/errata/RHSA-2024:6009"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6013 vom 2024-09-05",
"url": "https://access.redhat.com/errata/RHSA-2024:6013"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6406 vom 2024-09-12",
"url": "https://access.redhat.com/errata/RHSA-2024:6406"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6642 vom 2024-09-18",
"url": "https://access.redhat.com/errata/RHSA-2024:6642"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7168815 vom 2024-09-18",
"url": "https://www.ibm.com/support/pages/node/7168815"
},
{
"category": "external",
"summary": "Insyde Security Advisory INSYDE-SA-2024010 vom 2024-10-09",
"url": "https://www.insyde.com/security-pledge/SA-2024010"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2024-422 vom 2024-10-10",
"url": "https://www.dell.com/support/kbdoc/de-de/000234730/dsa-2024-422-security-update-for-dell-networker-vproxy-multiple-component-vulnerabilities"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5930 vom 2024-10-15",
"url": "https://linux.oracle.com/errata/ELSA-2024-5930.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7176451 vom 2024-11-18",
"url": "https://aix.software.ibm.com/aix/efixes/security/bind_advisory27.asc"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7176451 vom 2024-11-19",
"url": "https://www.ibm.com/support/pages/node/7176451"
},
{
"category": "external",
"summary": "XEROX Security Advisory XRX25-001 vom 2025-01-13",
"url": "https://securitydocs.business.xerox.com/wp-content/uploads/2025/01/Xerox-Security-Bulletin-XRX25-001-for-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf"
}
],
"source_lang": "en-US",
"title": "Internet Systems Consortium BIND: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2025-01-12T23:00:00.000+00:00",
"generator": {
"date": "2025-01-13T11:08:24.565+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2024-1700",
"initial_release_date": "2024-07-23T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-07-23T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-07-25T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2024-07-29T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-07-31T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Fedora und NetApp aufgenommen"
},
{
"date": "2024-08-01T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-08-06T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-08-08T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-08-11T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-08-12T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-13T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Amazon und Oracle Linux aufgenommen"
},
{
"date": "2024-08-14T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
},
{
"date": "2024-08-15T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-08-18T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von F5 und Red Hat aufgenommen"
},
{
"date": "2024-08-19T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-08-20T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-21T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2024-08-22T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von F5 aufgenommen"
},
{
"date": "2024-08-25T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-26T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-27T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-28T22:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-03T22:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-04T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-05T22:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-11T22:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-17T22:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-08T22:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von Insyde aufgenommen"
},
{
"date": "2024-10-09T22:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2024-10-14T22:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-11-18T23:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2025-01-12T23:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von XEROX aufgenommen"
}
],
"status": "final",
"version": "31"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "F5 BIG-IP",
"product": {
"name": "F5 BIG-IP",
"product_id": "T001663",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip:-"
}
}
},
{
"category": "product_version",
"name": "17.1.0-17.1.1",
"product": {
"name": "F5 BIG-IP 17.1.0-17.1.1",
"product_id": "T034899",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip:17.1.0_-_17.1.1"
}
}
},
{
"category": "product_version",
"name": "15.1.0-15.1.10",
"product": {
"name": "F5 BIG-IP 15.1.0-15.1.10",
"product_id": "T034902",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip:15.1.0_-_15.1.10"
}
}
},
{
"category": "product_version",
"name": "16.1.0-16.1.5",
"product": {
"name": "F5 BIG-IP 16.1.0-16.1.5",
"product_id": "T037028",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip:16.1.0_-_16.1.5"
}
}
}
],
"category": "product_name",
"name": "BIG-IP"
}
],
"category": "vendor",
"name": "F5"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "7.3",
"product": {
"name": "IBM AIX 7.3",
"product_id": "1139691",
"product_identification_helper": {
"cpe": "cpe:/o:ibm:aix:7.3"
}
}
},
{
"category": "product_version",
"name": "7.2",
"product": {
"name": "IBM AIX 7.2",
"product_id": "434967",
"product_identification_helper": {
"cpe": "cpe:/o:ibm:aix:7.2"
}
}
},
{
"category": "product_name",
"name": "IBM AIX",
"product": {
"name": "IBM AIX",
"product_id": "T039245",
"product_identification_helper": {
"cpe": "cpe:/o:ibm:aix:-"
}
}
}
],
"category": "product_name",
"name": "AIX"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP9 IF03",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP9 IF03",
"product_id": "T037731"
}
},
{
"category": "product_version",
"name": "7.5.0 UP9 IF03",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP9 IF03",
"product_id": "T037731-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up9_if03"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
},
{
"branches": [
{
"category": "product_version",
"name": "3.1",
"product": {
"name": "IBM VIOS 3.1",
"product_id": "1039165",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:vios:3.1"
}
}
},
{
"category": "product_version",
"name": "4.1",
"product": {
"name": "IBM VIOS 4.1",
"product_id": "1522854",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:vios:4.1"
}
}
}
],
"category": "product_name",
"name": "VIOS"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Infoblox DDI",
"product": {
"name": "Infoblox DDI",
"product_id": "T022362",
"product_identification_helper": {
"cpe": "cpe:/a:infoblox:ddi:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "8.6.3",
"product": {
"name": "Infoblox NIOS 8.6.3",
"product_id": "T024812",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:8.6.3"
}
}
},
{
"category": "product_version",
"name": "8.6.2",
"product": {
"name": "Infoblox NIOS 8.6.2",
"product_id": "T028256",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:8.6.2"
}
}
},
{
"category": "product_version",
"name": "8.6.4",
"product": {
"name": "Infoblox NIOS 8.6.4",
"product_id": "T032852",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:8.6.4"
}
}
},
{
"category": "product_version",
"name": "9.0.2",
"product": {
"name": "Infoblox NIOS 9.0.2",
"product_id": "T032853",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:9.0.2"
}
}
},
{
"category": "product_version",
"name": "9.0.3",
"product": {
"name": "Infoblox NIOS 9.0.3",
"product_id": "T032854",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:9.0.3"
}
}
},
{
"category": "product_version",
"name": "9.0.4",
"product": {
"name": "Infoblox NIOS 9.0.4",
"product_id": "T036441",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:9.0.4"
}
}
}
],
"category": "product_name",
"name": "NIOS"
}
],
"category": "vendor",
"name": "Infoblox"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cRV23.08",
"product": {
"name": "Insyde UEFI Firmware \u003cRV23.08",
"product_id": "T038076"
}
},
{
"category": "product_version",
"name": "RV23.08",
"product": {
"name": "Insyde UEFI Firmware RV23.08",
"product_id": "T038076-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:insyde:uefi:rv23.08"
}
}
},
{
"category": "product_version_range",
"name": "\u003cRV24.06",
"product": {
"name": "Insyde UEFI Firmware \u003cRV24.06",
"product_id": "T038077"
}
},
{
"category": "product_version",
"name": "RV24.06",
"product": {
"name": "Insyde UEFI Firmware RV24.06",
"product_id": "T038077-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:insyde:uefi:rv24.06"
}
}
}
],
"category": "product_name",
"name": "UEFI Firmware"
}
],
"category": "vendor",
"name": "Insyde"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c9.18.28",
"product": {
"name": "Internet Systems Consortium BIND \u003c9.18.28",
"product_id": "T036434"
}
},
{
"category": "product_version",
"name": "9.18.28",
"product": {
"name": "Internet Systems Consortium BIND 9.18.28",
"product_id": "T036434-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:isc:bind:9.18.28"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.20.0",
"product": {
"name": "Internet Systems Consortium BIND \u003c9.20.0",
"product_id": "T036435"
}
},
{
"category": "product_version",
"name": "9.20.0",
"product": {
"name": "Internet Systems Consortium BIND 9.20.0",
"product_id": "T036435-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:isc:bind:9.20.0"
}
}
}
],
"category": "product_name",
"name": "BIND"
}
],
"category": "vendor",
"name": "Internet Systems Consortium"
},
{
"branches": [
{
"category": "product_name",
"name": "NetApp ActiveIQ Unified Manager",
"product": {
"name": "NetApp ActiveIQ Unified Manager",
"product_id": "T026333",
"product_identification_helper": {
"cpe": "cpe:/a:netapp:active_iq_unified_manager:vmware_vsphere"
}
}
}
],
"category": "vendor",
"name": "NetApp"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "v9 for Solaris",
"product": {
"name": "Xerox FreeFlow Print Server v9 for Solaris",
"product_id": "T028053",
"product_identification_helper": {
"cpe": "cpe:/a:xerox:freeflow_print_server:v9_for_solaris"
}
}
}
],
"category": "product_name",
"name": "FreeFlow Print Server"
}
],
"category": "vendor",
"name": "Xerox"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-0760",
"notes": [
{
"category": "description",
"text": "In Internet Systems Consortium BIND existieren mehrere Schwachstellen. Diese Fehler sind auf eine unsachgem\u00e4\u00dfe Behandlung von DNS-Nachrichten, DNSSEC-Validierung und eine gro\u00dfe Anzahl von Ressourcendatens\u00e4tzen zur\u00fcckzuf\u00fchren, was zu Instabilit\u00e4t, Leistungseinbu\u00dfen, Abst\u00fcrzen und Assertion-Fehlern f\u00fchrt. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T034902",
"T037731",
"T004914",
"T036441",
"1139691",
"T001663",
"398363",
"T022362",
"T032852",
"T034899",
"T032853",
"T028053",
"434967",
"T032854",
"1039165",
"1522854",
"T037028",
"T036434",
"T036435",
"T039245",
"T032255",
"74185",
"T038076",
"T038077",
"2951",
"T002207",
"T000126",
"T024812",
"T026333",
"T028256"
]
},
"release_date": "2024-07-23T22:00:00.000+00:00",
"title": "CVE-2024-0760"
},
{
"cve": "CVE-2024-1737",
"notes": [
{
"category": "description",
"text": "In Internet Systems Consortium BIND existieren mehrere Schwachstellen. Diese Fehler sind auf eine unsachgem\u00e4\u00dfe Behandlung von DNS-Nachrichten, DNSSEC-Validierung und eine gro\u00dfe Anzahl von Ressourcendatens\u00e4tzen zur\u00fcckzuf\u00fchren, was zu Instabilit\u00e4t, Leistungseinbu\u00dfen, Abst\u00fcrzen und Assertion-Fehlern f\u00fchrt. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T034902",
"T037731",
"T004914",
"T036441",
"1139691",
"T001663",
"398363",
"T022362",
"T032852",
"T034899",
"T032853",
"T028053",
"434967",
"T032854",
"1039165",
"1522854",
"T037028",
"T036434",
"T036435",
"T039245",
"T032255",
"74185",
"T038076",
"T038077",
"2951",
"T002207",
"T000126",
"T024812",
"T026333",
"T028256"
]
},
"release_date": "2024-07-23T22:00:00.000+00:00",
"title": "CVE-2024-1737"
},
{
"cve": "CVE-2024-1975",
"notes": [
{
"category": "description",
"text": "In Internet Systems Consortium BIND existieren mehrere Schwachstellen. Diese Fehler sind auf eine unsachgem\u00e4\u00dfe Behandlung von DNS-Nachrichten, DNSSEC-Validierung und eine gro\u00dfe Anzahl von Ressourcendatens\u00e4tzen zur\u00fcckzuf\u00fchren, was zu Instabilit\u00e4t, Leistungseinbu\u00dfen, Abst\u00fcrzen und Assertion-Fehlern f\u00fchrt. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T034902",
"T037731",
"T004914",
"T036441",
"1139691",
"T001663",
"398363",
"T022362",
"T032852",
"T034899",
"T032853",
"T028053",
"434967",
"T032854",
"1039165",
"1522854",
"T037028",
"T036434",
"T036435",
"T039245",
"T032255",
"74185",
"T038076",
"T038077",
"2951",
"T002207",
"T000126",
"T024812",
"T026333",
"T028256"
]
},
"release_date": "2024-07-23T22:00:00.000+00:00",
"title": "CVE-2024-1975"
},
{
"cve": "CVE-2024-4076",
"notes": [
{
"category": "description",
"text": "In Internet Systems Consortium BIND existieren mehrere Schwachstellen. Diese Fehler sind auf eine unsachgem\u00e4\u00dfe Behandlung von DNS-Nachrichten, DNSSEC-Validierung und eine gro\u00dfe Anzahl von Ressourcendatens\u00e4tzen zur\u00fcckzuf\u00fchren, was zu Instabilit\u00e4t, Leistungseinbu\u00dfen, Abst\u00fcrzen und Assertion-Fehlern f\u00fchrt. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T034902",
"T037731",
"T004914",
"T036441",
"1139691",
"T001663",
"398363",
"T022362",
"T032852",
"T034899",
"T032853",
"T028053",
"434967",
"T032854",
"1039165",
"1522854",
"T037028",
"T036434",
"T036435",
"T039245",
"T032255",
"74185",
"T038076",
"T038077",
"2951",
"T002207",
"T000126",
"T024812",
"T026333",
"T028256"
]
},
"release_date": "2024-07-23T22:00:00.000+00:00",
"title": "CVE-2024-4076"
}
]
}
wid-sec-w-2024-1700
Vulnerability from csaf_certbund
Published
2024-07-23 22:00
Modified
2025-01-12 23:00
Summary
Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
BIND (Berkeley Internet Name Domain) ist ein Open-Source-Softwarepaket, das einen Domain-Name-System-Server implementiert.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Internet Systems Consortium BIND ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Sonstiges
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "BIND (Berkeley Internet Name Domain) ist ein Open-Source-Softwarepaket, das einen Domain-Name-System-Server implementiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Internet Systems Consortium BIND ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1700 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1700.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1700 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1700"
},
{
"category": "external",
"summary": "OSS Security Mailing List vom 2024-07-23",
"url": "https://seclists.org/oss-sec/2024/q3/101"
},
{
"category": "external",
"summary": "BIND Security Advisory vom 2024-07-23",
"url": "https://kb.isc.org/docs/cve-2024-0760"
},
{
"category": "external",
"summary": "BIND Security Advisory vom 2024-07-23",
"url": "https://kb.isc.org/docs/cve-2024-1737"
},
{
"category": "external",
"summary": "BIND Security Advisory vom 2024-07-23",
"url": "https://kb.isc.org/docs/cve-2024-1975"
},
{
"category": "external",
"summary": "BIND Security Advisory vom 2024-07-23",
"url": "https://kb.isc.org/docs/cve-2024-4076"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6909-1 vom 2024-07-23",
"url": "https://ubuntu.com/security/notices/USN-6909-1"
},
{
"category": "external",
"summary": "Infoblox Advisory",
"url": "https://support.infoblox.com/s/article/000009904"
},
{
"category": "external",
"summary": "Infoblox Advisory",
"url": "https://support.infoblox.com/s/article/000009906"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5734 vom 2024-07-26",
"url": "https://lists.debian.org/debian-security-announce/2024/msg00145.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2636-1 vom 2024-07-30",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/019038.html"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-8AF1780FDF vom 2024-07-31",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-8af1780fdf"
},
{
"category": "external",
"summary": "NetApp Security Advisory NTAP-20240731-0003 vom 2024-07-31",
"url": "https://security.netapp.com/advisory/ntap-20240731-0003/"
},
{
"category": "external",
"summary": "NetApp Security Advisory NTAP-20240731-0002 vom 2024-07-31",
"url": "https://security.netapp.com/advisory/ntap-20240731-0002/"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-56AE6C2C7A vom 2024-07-31",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-56ae6c2c7a"
},
{
"category": "external",
"summary": "NetApp Security Advisory NTAP-20240731-0001 vom 2024-07-31",
"url": "https://security.netapp.com/advisory/ntap-20240731-0001/"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-EF8A7031E7 vom 2024-08-01",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-ef8a7031e7"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6909-2 vom 2024-08-01",
"url": "https://ubuntu.com/security/notices/USN-6909-2"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2810-1 vom 2024-08-07",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019125.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2811-1 vom 2024-08-07",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019124.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2863-1 vom 2024-08-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019158.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2863-1 vom 2024-08-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019159.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2863-1 vom 2024-08-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019160.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2862-1 vom 2024-08-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019161.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2868-1 vom 2024-08-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019165.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5231 vom 2024-08-12",
"url": "https://access.redhat.com/errata/RHSA-2024:5231"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2616 vom 2024-08-13",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2616.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5231 vom 2024-08-13",
"url": "https://linux.oracle.com/errata/ELSA-2024-5231.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5390 vom 2024-08-15",
"url": "https://access.redhat.com/errata/RHSA-2024:5390"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5390 vom 2024-08-14",
"url": "https://linux.oracle.com/errata/ELSA-2024-5390.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5418 vom 2024-08-15",
"url": "https://access.redhat.com/errata/RHSA-2024:5418"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6909-3 vom 2024-08-15",
"url": "https://ubuntu.com/security/notices/USN-6909-3"
},
{
"category": "external",
"summary": "F5 Security Advisory K000140732 vom 2024-08-17",
"url": "https://my.f5.com/manage/s/article/K000140732"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5524 vom 2024-08-19",
"url": "https://access.redhat.com/errata/RHSA-2024:5524"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5525 vom 2024-08-19",
"url": "https://access.redhat.com/errata/RHSA-2024:5525"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5524 vom 2024-08-20",
"url": "http://linux.oracle.com/errata/ELSA-2024-5524.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5655 vom 2024-08-21",
"url": "https://access.redhat.com/errata/RHSA-2024:5655"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:5231 vom 2024-08-21",
"url": "https://errata.build.resf.org/RLSA-2024:5231"
},
{
"category": "external",
"summary": "F5 Security Advisory K000140745 vom 2024-08-22",
"url": "https://my.f5.com/manage/s/article/K000140745"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5813 vom 2024-08-26",
"url": "https://access.redhat.com/errata/RHSA-2024:5813"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5871 vom 2024-08-27",
"url": "https://access.redhat.com/errata/RHSA-2024:5871"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5838 vom 2024-08-26",
"url": "https://access.redhat.com/errata/RHSA-2024:5838"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5907 vom 2024-08-28",
"url": "https://access.redhat.com/errata/RHSA-2024:5907"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5894 vom 2024-08-27",
"url": "https://access.redhat.com/errata/RHSA-2024:5894"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5908 vom 2024-08-28",
"url": "https://access.redhat.com/errata/RHSA-2024:5908"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5930 vom 2024-08-28",
"url": "https://access.redhat.com/errata/RHSA-2024:5930"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6004 vom 2024-09-04",
"url": "https://access.redhat.com/errata/RHSA-2024:6004"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6009 vom 2024-09-04",
"url": "https://access.redhat.com/errata/RHSA-2024:6009"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6013 vom 2024-09-05",
"url": "https://access.redhat.com/errata/RHSA-2024:6013"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6406 vom 2024-09-12",
"url": "https://access.redhat.com/errata/RHSA-2024:6406"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6642 vom 2024-09-18",
"url": "https://access.redhat.com/errata/RHSA-2024:6642"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7168815 vom 2024-09-18",
"url": "https://www.ibm.com/support/pages/node/7168815"
},
{
"category": "external",
"summary": "Insyde Security Advisory INSYDE-SA-2024010 vom 2024-10-09",
"url": "https://www.insyde.com/security-pledge/SA-2024010"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2024-422 vom 2024-10-10",
"url": "https://www.dell.com/support/kbdoc/de-de/000234730/dsa-2024-422-security-update-for-dell-networker-vproxy-multiple-component-vulnerabilities"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5930 vom 2024-10-15",
"url": "https://linux.oracle.com/errata/ELSA-2024-5930.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7176451 vom 2024-11-18",
"url": "https://aix.software.ibm.com/aix/efixes/security/bind_advisory27.asc"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7176451 vom 2024-11-19",
"url": "https://www.ibm.com/support/pages/node/7176451"
},
{
"category": "external",
"summary": "XEROX Security Advisory XRX25-001 vom 2025-01-13",
"url": "https://securitydocs.business.xerox.com/wp-content/uploads/2025/01/Xerox-Security-Bulletin-XRX25-001-for-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf"
}
],
"source_lang": "en-US",
"title": "Internet Systems Consortium BIND: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2025-01-12T23:00:00.000+00:00",
"generator": {
"date": "2025-01-13T11:08:24.565+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2024-1700",
"initial_release_date": "2024-07-23T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-07-23T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-07-25T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2024-07-29T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-07-31T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Fedora und NetApp aufgenommen"
},
{
"date": "2024-08-01T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-08-06T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-08-08T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-08-11T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-08-12T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-13T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Amazon und Oracle Linux aufgenommen"
},
{
"date": "2024-08-14T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
},
{
"date": "2024-08-15T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-08-18T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von F5 und Red Hat aufgenommen"
},
{
"date": "2024-08-19T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-08-20T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-21T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2024-08-22T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von F5 aufgenommen"
},
{
"date": "2024-08-25T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-26T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-27T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-28T22:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-03T22:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-04T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-05T22:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-11T22:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-17T22:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-08T22:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von Insyde aufgenommen"
},
{
"date": "2024-10-09T22:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2024-10-14T22:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-11-18T23:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2025-01-12T23:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von XEROX aufgenommen"
}
],
"status": "final",
"version": "31"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "F5 BIG-IP",
"product": {
"name": "F5 BIG-IP",
"product_id": "T001663",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip:-"
}
}
},
{
"category": "product_version",
"name": "17.1.0-17.1.1",
"product": {
"name": "F5 BIG-IP 17.1.0-17.1.1",
"product_id": "T034899",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip:17.1.0_-_17.1.1"
}
}
},
{
"category": "product_version",
"name": "15.1.0-15.1.10",
"product": {
"name": "F5 BIG-IP 15.1.0-15.1.10",
"product_id": "T034902",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip:15.1.0_-_15.1.10"
}
}
},
{
"category": "product_version",
"name": "16.1.0-16.1.5",
"product": {
"name": "F5 BIG-IP 16.1.0-16.1.5",
"product_id": "T037028",
"product_identification_helper": {
"cpe": "cpe:/a:f5:big-ip:16.1.0_-_16.1.5"
}
}
}
],
"category": "product_name",
"name": "BIG-IP"
}
],
"category": "vendor",
"name": "F5"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "7.3",
"product": {
"name": "IBM AIX 7.3",
"product_id": "1139691",
"product_identification_helper": {
"cpe": "cpe:/o:ibm:aix:7.3"
}
}
},
{
"category": "product_version",
"name": "7.2",
"product": {
"name": "IBM AIX 7.2",
"product_id": "434967",
"product_identification_helper": {
"cpe": "cpe:/o:ibm:aix:7.2"
}
}
},
{
"category": "product_name",
"name": "IBM AIX",
"product": {
"name": "IBM AIX",
"product_id": "T039245",
"product_identification_helper": {
"cpe": "cpe:/o:ibm:aix:-"
}
}
}
],
"category": "product_name",
"name": "AIX"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP9 IF03",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP9 IF03",
"product_id": "T037731"
}
},
{
"category": "product_version",
"name": "7.5.0 UP9 IF03",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP9 IF03",
"product_id": "T037731-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up9_if03"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
},
{
"branches": [
{
"category": "product_version",
"name": "3.1",
"product": {
"name": "IBM VIOS 3.1",
"product_id": "1039165",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:vios:3.1"
}
}
},
{
"category": "product_version",
"name": "4.1",
"product": {
"name": "IBM VIOS 4.1",
"product_id": "1522854",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:vios:4.1"
}
}
}
],
"category": "product_name",
"name": "VIOS"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Infoblox DDI",
"product": {
"name": "Infoblox DDI",
"product_id": "T022362",
"product_identification_helper": {
"cpe": "cpe:/a:infoblox:ddi:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "8.6.3",
"product": {
"name": "Infoblox NIOS 8.6.3",
"product_id": "T024812",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:8.6.3"
}
}
},
{
"category": "product_version",
"name": "8.6.2",
"product": {
"name": "Infoblox NIOS 8.6.2",
"product_id": "T028256",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:8.6.2"
}
}
},
{
"category": "product_version",
"name": "8.6.4",
"product": {
"name": "Infoblox NIOS 8.6.4",
"product_id": "T032852",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:8.6.4"
}
}
},
{
"category": "product_version",
"name": "9.0.2",
"product": {
"name": "Infoblox NIOS 9.0.2",
"product_id": "T032853",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:9.0.2"
}
}
},
{
"category": "product_version",
"name": "9.0.3",
"product": {
"name": "Infoblox NIOS 9.0.3",
"product_id": "T032854",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:9.0.3"
}
}
},
{
"category": "product_version",
"name": "9.0.4",
"product": {
"name": "Infoblox NIOS 9.0.4",
"product_id": "T036441",
"product_identification_helper": {
"cpe": "cpe:/o:infoblox:nios:9.0.4"
}
}
}
],
"category": "product_name",
"name": "NIOS"
}
],
"category": "vendor",
"name": "Infoblox"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cRV23.08",
"product": {
"name": "Insyde UEFI Firmware \u003cRV23.08",
"product_id": "T038076"
}
},
{
"category": "product_version",
"name": "RV23.08",
"product": {
"name": "Insyde UEFI Firmware RV23.08",
"product_id": "T038076-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:insyde:uefi:rv23.08"
}
}
},
{
"category": "product_version_range",
"name": "\u003cRV24.06",
"product": {
"name": "Insyde UEFI Firmware \u003cRV24.06",
"product_id": "T038077"
}
},
{
"category": "product_version",
"name": "RV24.06",
"product": {
"name": "Insyde UEFI Firmware RV24.06",
"product_id": "T038077-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:insyde:uefi:rv24.06"
}
}
}
],
"category": "product_name",
"name": "UEFI Firmware"
}
],
"category": "vendor",
"name": "Insyde"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c9.18.28",
"product": {
"name": "Internet Systems Consortium BIND \u003c9.18.28",
"product_id": "T036434"
}
},
{
"category": "product_version",
"name": "9.18.28",
"product": {
"name": "Internet Systems Consortium BIND 9.18.28",
"product_id": "T036434-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:isc:bind:9.18.28"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.20.0",
"product": {
"name": "Internet Systems Consortium BIND \u003c9.20.0",
"product_id": "T036435"
}
},
{
"category": "product_version",
"name": "9.20.0",
"product": {
"name": "Internet Systems Consortium BIND 9.20.0",
"product_id": "T036435-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:isc:bind:9.20.0"
}
}
}
],
"category": "product_name",
"name": "BIND"
}
],
"category": "vendor",
"name": "Internet Systems Consortium"
},
{
"branches": [
{
"category": "product_name",
"name": "NetApp ActiveIQ Unified Manager",
"product": {
"name": "NetApp ActiveIQ Unified Manager",
"product_id": "T026333",
"product_identification_helper": {
"cpe": "cpe:/a:netapp:active_iq_unified_manager:vmware_vsphere"
}
}
}
],
"category": "vendor",
"name": "NetApp"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "v9 for Solaris",
"product": {
"name": "Xerox FreeFlow Print Server v9 for Solaris",
"product_id": "T028053",
"product_identification_helper": {
"cpe": "cpe:/a:xerox:freeflow_print_server:v9_for_solaris"
}
}
}
],
"category": "product_name",
"name": "FreeFlow Print Server"
}
],
"category": "vendor",
"name": "Xerox"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-0760",
"notes": [
{
"category": "description",
"text": "In Internet Systems Consortium BIND existieren mehrere Schwachstellen. Diese Fehler sind auf eine unsachgem\u00e4\u00dfe Behandlung von DNS-Nachrichten, DNSSEC-Validierung und eine gro\u00dfe Anzahl von Ressourcendatens\u00e4tzen zur\u00fcckzuf\u00fchren, was zu Instabilit\u00e4t, Leistungseinbu\u00dfen, Abst\u00fcrzen und Assertion-Fehlern f\u00fchrt. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T034902",
"T037731",
"T004914",
"T036441",
"1139691",
"T001663",
"398363",
"T022362",
"T032852",
"T034899",
"T032853",
"T028053",
"434967",
"T032854",
"1039165",
"1522854",
"T037028",
"T036434",
"T036435",
"T039245",
"T032255",
"74185",
"T038076",
"T038077",
"2951",
"T002207",
"T000126",
"T024812",
"T026333",
"T028256"
]
},
"release_date": "2024-07-23T22:00:00.000+00:00",
"title": "CVE-2024-0760"
},
{
"cve": "CVE-2024-1737",
"notes": [
{
"category": "description",
"text": "In Internet Systems Consortium BIND existieren mehrere Schwachstellen. Diese Fehler sind auf eine unsachgem\u00e4\u00dfe Behandlung von DNS-Nachrichten, DNSSEC-Validierung und eine gro\u00dfe Anzahl von Ressourcendatens\u00e4tzen zur\u00fcckzuf\u00fchren, was zu Instabilit\u00e4t, Leistungseinbu\u00dfen, Abst\u00fcrzen und Assertion-Fehlern f\u00fchrt. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T034902",
"T037731",
"T004914",
"T036441",
"1139691",
"T001663",
"398363",
"T022362",
"T032852",
"T034899",
"T032853",
"T028053",
"434967",
"T032854",
"1039165",
"1522854",
"T037028",
"T036434",
"T036435",
"T039245",
"T032255",
"74185",
"T038076",
"T038077",
"2951",
"T002207",
"T000126",
"T024812",
"T026333",
"T028256"
]
},
"release_date": "2024-07-23T22:00:00.000+00:00",
"title": "CVE-2024-1737"
},
{
"cve": "CVE-2024-1975",
"notes": [
{
"category": "description",
"text": "In Internet Systems Consortium BIND existieren mehrere Schwachstellen. Diese Fehler sind auf eine unsachgem\u00e4\u00dfe Behandlung von DNS-Nachrichten, DNSSEC-Validierung und eine gro\u00dfe Anzahl von Ressourcendatens\u00e4tzen zur\u00fcckzuf\u00fchren, was zu Instabilit\u00e4t, Leistungseinbu\u00dfen, Abst\u00fcrzen und Assertion-Fehlern f\u00fchrt. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T034902",
"T037731",
"T004914",
"T036441",
"1139691",
"T001663",
"398363",
"T022362",
"T032852",
"T034899",
"T032853",
"T028053",
"434967",
"T032854",
"1039165",
"1522854",
"T037028",
"T036434",
"T036435",
"T039245",
"T032255",
"74185",
"T038076",
"T038077",
"2951",
"T002207",
"T000126",
"T024812",
"T026333",
"T028256"
]
},
"release_date": "2024-07-23T22:00:00.000+00:00",
"title": "CVE-2024-1975"
},
{
"cve": "CVE-2024-4076",
"notes": [
{
"category": "description",
"text": "In Internet Systems Consortium BIND existieren mehrere Schwachstellen. Diese Fehler sind auf eine unsachgem\u00e4\u00dfe Behandlung von DNS-Nachrichten, DNSSEC-Validierung und eine gro\u00dfe Anzahl von Ressourcendatens\u00e4tzen zur\u00fcckzuf\u00fchren, was zu Instabilit\u00e4t, Leistungseinbu\u00dfen, Abst\u00fcrzen und Assertion-Fehlern f\u00fchrt. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T034902",
"T037731",
"T004914",
"T036441",
"1139691",
"T001663",
"398363",
"T022362",
"T032852",
"T034899",
"T032853",
"T028053",
"434967",
"T032854",
"1039165",
"1522854",
"T037028",
"T036434",
"T036435",
"T039245",
"T032255",
"74185",
"T038076",
"T038077",
"2951",
"T002207",
"T000126",
"T024812",
"T026333",
"T028256"
]
},
"release_date": "2024-07-23T22:00:00.000+00:00",
"title": "CVE-2024-4076"
}
]
}
gsd-2024-0760
Vulnerability from gsd
Modified
2024-01-20 06:02
Details
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Aliases
{
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2024-0760"
],
"id": "GSD-2024-0760",
"modified": "2024-01-20T06:02:16.084218Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2024-0760",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}
}
}
ghsa-v3r3-642v-rqj8
Vulnerability from github
Published
2024-07-23 15:31
Modified
2024-07-31 12:31
Severity ?
VLAI Severity ?
Details
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.
{
"affected": [],
"aliases": [
"CVE-2024-0760"
],
"database_specific": {
"cwe_ids": [
"CWE-770"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-07-23T15:15:03Z",
"severity": "HIGH"
},
"details": "A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. \nThis issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.",
"id": "GHSA-v3r3-642v-rqj8",
"modified": "2024-07-31T12:31:46Z",
"published": "2024-07-23T15:31:09Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0760"
},
{
"type": "WEB",
"url": "https://kb.isc.org/docs/cve-2024-0760"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2024/07/23/1"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2024/07/31/2"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
msrc_cve-2024-0760
Vulnerability from csaf_microsoft
Published
2024-07-01 07:00
Modified
2024-08-15 00:00
Summary
A flood of DNS messages over TCP may make the server unstable
Notes
Additional Resources
To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer
The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2024-0760 A flood of DNS messages over TCP may make the server unstable - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-0760.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "A flood of DNS messages over TCP may make the server unstable",
"tracking": {
"current_release_date": "2024-08-15T00:00:00.000Z",
"generator": {
"date": "2025-10-20T01:52:51.724Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2024-0760",
"initial_release_date": "2024-07-01T07:00:00.000Z",
"revision_history": [
{
"date": "2024-08-15T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cazl3 bind 9.20.0-1",
"product": {
"name": "\u003cazl3 bind 9.20.0-1",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "azl3 bind 9.20.0-1",
"product": {
"name": "azl3 bind 9.20.0-1",
"product_id": "17676"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 bind 9.19.21-1",
"product": {
"name": "\u003cazl3 bind 9.19.21-1",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "azl3 bind 9.19.21-1",
"product": {
"name": "azl3 bind 9.19.21-1",
"product_id": "18169"
}
}
],
"category": "product_name",
"name": "bind"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 bind 9.20.0-1 as a component of Azure Linux 3.0",
"product_id": "17084-2"
},
"product_reference": "2",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 bind 9.20.0-1 as a component of Azure Linux 3.0",
"product_id": "17676-17084"
},
"product_reference": "17676",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 bind 9.19.21-1 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 bind 9.19.21-1 as a component of Azure Linux 3.0",
"product_id": "18169-17084"
},
"product_reference": "18169",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-0760",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "general",
"text": "isc",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"17676-17084",
"18169-17084"
],
"known_affected": [
"17084-2",
"17084-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-0760 A flood of DNS messages over TCP may make the server unstable - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-0760.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2024-08-15T00:00:00.000Z",
"details": "9.20.0-1:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-2",
"17084-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalsScore": 0.0,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"17084-2",
"17084-1"
]
}
],
"title": "A flood of DNS messages over TCP may make the server unstable"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…