CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-28451
https://notcve.org/view.php?id=CVE-2023-28451
18 Sep 2024 — There is a vulnerability (called BadDNS) in DNS resolving software, which triggers a resolver to ignore valid responses, thus causing DoS (denial of service) for normal resolution. • https://gist.github.com/idealeer/89947ca07836fd0f7e9761198ca9a0f3. • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-28452
https://notcve.org/view.php?id=CVE-2023-28452
18 Sep 2024 — There is a vulnerability in DNS resolving software, which triggers a resolver to ignore valid responses, thus causing denial of service for normal resolution. • https://coredns.io •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-28455
https://notcve.org/view.php?id=CVE-2023-28455
18 Sep 2024 — The forwarding mode enables attackers to create a query loop using Technitium resolvers, launching amplification attacks and causing potential DoS. • https://gist.github.com/idealeer/89947ca07836fd0f7e9761198ca9a0f3 • CWE-406: Insufficient Control of Network Message Volume (Network Amplification) •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-28456
https://notcve.org/view.php?id=CVE-2023-28456
18 Sep 2024 — It enables attackers to launch amplification attacks (3 times more than other "golden model" software like BIND) and cause potential DoS. • https://gist.github.com/idealeer/89947ca07836fd0f7e9761198ca9a0f3 • CWE-406: Insufficient Control of Network Message Volume (Network Amplification) •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-49203
https://notcve.org/view.php?id=CVE-2023-49203
18 Sep 2024 — Technitium 11.5.3 allows remote attackers to cause a denial of service (bandwidth amplification) because the DNSBomb manipulation causes accumulation of low-rate DNS queries such that there is a large-sized response in a burst of traffic. • https://gist.github.com/idealeer/89947ca07836fd0f7e9761198ca9a0f3. • CWE-406: Insufficient Control of Network Message Volume (Network Amplification) •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46550
https://notcve.org/view.php?id=CVE-2024-46550
18 Sep 2024 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. • https://ink-desk-28f.notion.site/Draytek-vigor-3910-Analysis-Report-b3b23e150c4f4bab822c3c47fd7b9de9#bffdd8897d944a77834b865d9326a1d7 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46551
https://notcve.org/view.php?id=CVE-2024-46551
18 Sep 2024 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. • https://ink-desk-28f.notion.site/Draytek-vigor-3910-Analysis-Report-b3b23e150c4f4bab822c3c47fd7b9de9#aabdeced2a5e407ba3b3c0d318af0a29 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46552
https://notcve.org/view.php?id=CVE-2024-46552
18 Sep 2024 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. • https://ink-desk-28f.notion.site/Draytek-vigor-3910-Analysis-Report-b3b23e150c4f4bab822c3c47fd7b9de9#53ad238cc1af41f7a32b29260f7274ec •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46553
https://notcve.org/view.php?id=CVE-2024-46553
18 Sep 2024 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. • https://ink-desk-28f.notion.site/Draytek-vigor-3910-Analysis-Report-b3b23e150c4f4bab822c3c47fd7b9de9#1e21ab70186245aa8fb17578863216e2 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46554
https://notcve.org/view.php?id=CVE-2024-46554
18 Sep 2024 — This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. • https://ink-desk-28f.notion.site/Draytek-vigor-3910-Analysis-Report-b3b23e150c4f4bab822c3c47fd7b9de9#ee86534f23b84f2cbfa9401ee1d9d179 •