CVE-2022-33988

dproxy-nexgen (aka dproxy nexgen) re-uses the DNS transaction id (TXID) value from client queries, which allows attackers (able to send queries to the resolver) to conduct DNS cache-poisoning attacks ...

Continue Reading

August 15, 2022

CVE-2022-33989

dproxy-nexgen (aka dproxy nexgen) uses a static UDP source port (selected randomly only at boot time) in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not en ...

Continue Reading

August 15, 2022

CVE-2022-33991

dproxy-nexgen (aka dproxy nexgen) forwards and caches DNS queries with the CD (aka checking disabled) bit set to 1. This leads to disabling of DNSSEC protection provided by upstream resolvers.Read Mor ...

Continue Reading

August 15, 2022

CVE-2022-2657

This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...

Continue Reading

August 15, 2022

CVE-2022-2597

This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...

Continue Reading

August 15, 2022

CVE-2022-36006

Arvados is an open source platform for managing, processing, and sharing genomic and other large scientific and biomedical data. A remote code execution (RCE) vulnerability in the Arvados Workbench al ...

Continue Reading

August 15, 2022

CVE-2022-35948

undici is an HTTP/1.1 client, written from scratch for Node.js.`=Read More ...

Continue Reading

August 15, 2022

CVE-2022-2813

A vulnerability, which was classified as problematic, was found in SourceCodester Guest Management System. Affected is an unknown function. The manipulation leads to cleartext storage of passwords in ...

Continue Reading

August 15, 2022

1 2,898 2,899 2,900 2,901 2,902 3,551

Back to Main
Subscribe for the latest news: