Vulnerabilities > Dproxy Nexgen Project > Dproxy Nexgen > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-08-15 CVE-2022-33989 Insufficient Entropy vulnerability in Dproxy-Nexgen Project Dproxy-Nexgen
dproxy-nexgen (aka dproxy nexgen) uses a static UDP source port (selected randomly only at boot time) in upstream queries sent to DNS resolvers.
network
low complexity
dproxy-nexgen-project CWE-331
5.3
2022-08-15 CVE-2022-33991 Authentication Bypass by Spoofing vulnerability in Dproxy-Nexgen Project Dproxy-Nexgen
dproxy-nexgen (aka dproxy nexgen) forwards and caches DNS queries with the CD (aka checking disabled) bit set to 1.
network
low complexity
dproxy-nexgen-project CWE-290
5.3