Vulnerabilities > Dproxy Nexgen Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-15	CVE-2022-33988	HTTP Request Smuggling vulnerability in Dproxy-Nexgen Project Dproxy-Nexgen dproxy-nexgen (aka dproxy nexgen) re-uses the DNS transaction id (TXID) value from client queries, which allows attackers (able to send queries to the resolver) to conduct DNS cache-poisoning attacks because the TXID value is known to the attacker. network low complexity dproxy-nexgen-project CWE-444	7.5
2022-08-15	CVE-2022-33989	Insufficient Entropy vulnerability in Dproxy-Nexgen Project Dproxy-Nexgen dproxy-nexgen (aka dproxy nexgen) uses a static UDP source port (selected randomly only at boot time) in upstream queries sent to DNS resolvers. network low complexity dproxy-nexgen-project CWE-331	5.3
2022-08-15	CVE-2022-33990	Unspecified vulnerability in Dproxy-Nexgen Project Dproxy-Nexgen Misinterpretation of special domain name characters in dproxy-nexgen (aka dproxy nexgen) leads to cache poisoning because domain names and their associated IP addresses are cached in their misinterpreted form. network low complexity dproxy-nexgen-project	7.5
2022-08-15	CVE-2022-33991	Authentication Bypass by Spoofing vulnerability in Dproxy-Nexgen Project Dproxy-Nexgen dproxy-nexgen (aka dproxy nexgen) forwards and caches DNS queries with the CD (aka checking disabled) bit set to 1. network low complexity dproxy-nexgen-project CWE-290	5.3

Vulnerabilities > Dproxy Nexgen Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Dproxy Nexgen Project"}]}