Lucene search
Veracode Vulnerability DatabaseVERACODE:39432HistoryFeb 26, 2023 - 7:45 p.m.
Denial Of Service (DoS)
2023-02-2619:45:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
knot-resolver vulnerability dos dns server connections crash application
0.001 Low
EPSS
Percentile
33.8%
knot-resolver is vulnerable to Denial Of Service (DoS). The vulnerability exists because the single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response, allowing an attacker to crash the application
| CPE | Name | Operator | Version |
|---|---|---|---|
| knot-resolver:sid | eq | 5.1.3-1 | |
| knot-resolver:sid | eq | 5.4.1-2 | |
| knot-resolver:sid | eq | 5.1.3-1 | |
| knot-resolver:sid | eq | 5.4.1-2 |
Related
cvelist
cvelist
CVE-2023-26249
2023-02-21 00:00:00
nvd
nvd
CVE-2023-26249
2023-02-21 02:15:10
cve
cve
CVE-2023-26249
2023-02-21 02:15:10
openvas
openvas
Knot Resolver < 5.6.0 DoS Vulnerability
2023-02-22 00:00:00
ubuntucve
ubuntucve
CVE-2023-26249
2023-02-21 00:00:00
prion
prion
Code injection
2023-02-21 02:15:00
osv
osv
CVE-2023-26249
2023-02-21 02:15:10
debiancve
debiancve
CVE-2023-26249
2023-02-21 02:15:10