Vulnerabilities > NIC > Knot Resolver > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-06-20 | CVE-2022-32983 | Authentication Bypass by Spoofing vulnerability in NIC Knot Resolver Knot Resolver through 5.5.1 may allow DNS cache poisoning when there is an attempt to limit forwarding actions by filters. | 5.0 |
2021-08-25 | CVE-2021-40083 | Reachable Assertion vulnerability in NIC Knot Resolver Knot Resolver before 5.3.2 is prone to an assertion failure, triggerable by a remote attacker in an edge case (NSEC3 with too many iterations used for a positive wildcard proof). | 5.0 |
2021-03-30 | CVE-2018-1110 | Improper Input Validation vulnerability in NIC Knot Resolver A flaw was found in knot-resolver before version 2.3.0. | 5.0 |
2018-08-02 | CVE-2018-10920 | Improper Input Validation vulnerability in NIC Knot Resolver Improper input validation bug in DNS resolver component of Knot Resolver before 2.4.1 allows remote attacker to poison cache. | 4.3 |
2018-01-22 | CVE-2018-1000002 | Improper Input Validation vulnerability in NIC Knot Resolver Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay. | 4.3 |