Known Vulnerabilities for Unbound by Nlnetlabs
Listed below are 10 of the newest known vulnerabilities associated with "Unbound" by "Nlnetlabs".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-23466 json | In the Linux kernel, the following vulnerability has been resolved: drm/xe: Open-code GGTT MMIO access protection GGTT MMIO... | Not Provided | 2026-04-03 | 2026-04-03 |
| CVE-2022-30699 json | NLnet Labs Unbound, up to and including version 1.16.1, is vulnerable to a novel type of the "ghost domain names" attack. The... | 6.5 - MEDIUM | 2022-08-01 | 2023-11-07 |
| CVE-2022-30698 json | NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable to a novel type of the "ghost domain names" attack. The ... | 6.5 - MEDIUM | 2022-08-01 | 2023-11-07 |
| CVE-2022-3204 json | A vulnerability named 'Non-Responsive Delegation Attack' (NRDelegation Attack) has been discovered in various DNS resolving s... | 7.5 - HIGH | 2022-09-26 | 2023-11-07 |
| CVE-2020-28935 json | NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a loca... | 5.5 - MEDIUM | 2020-12-07 | 2023-03-29 |
| CVE-2020-12663 json | Unbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers. | 7.5 - HIGH | 2020-05-19 | 2023-11-07 |
| CVE-2020-12662 json | Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by ran... | 7.5 - HIGH | 2020-05-19 | 2023-11-07 |
| CVE-2020-10772 json | An incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Hat Enterprise Linux 7, as part of erratum RHSA-2020:2414... | 7.5 - HIGH | 2020-11-27 | 2023-11-07 |
| CVE-2019-25042 json | ** DISPUTED ** Unbound before 1.9.5 allows an out-of-bounds write via a compressed name in rdata_copy. NOTE: The vendor dispu... | 9.8 - CRITICAL | 2021-04-27 | 2023-11-07 |
| CVE-2019-25041 json | ** DISPUTED ** Unbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. NOTE: The vendor dis... | 7.5 - HIGH | 2021-04-27 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Nlnetlabs | Unbound | 1.9.6 | |||
| Application | Nlnetlabs | Unbound | 1.9.6 | |||
| Application | Nlnetlabs | Unbound | 1.9.5 | |||
| Application | Nlnetlabs | Unbound | 1.9.4 | |||
| Application | Nlnetlabs | Unbound | 1.9.3 | |||
| Application | Nlnetlabs | Unbound | 1.9.3 | |||
| Application | Nlnetlabs | Unbound | 1.9.3 | |||
| Application | Nlnetlabs | Unbound | 1.9.2 | |||
| Application | Nlnetlabs | Unbound | 1.9.2 | |||
| Application | Nlnetlabs | Unbound | 1.9.2 | |||
| Application | Nlnetlabs | Unbound | 1.9.0 | |||
| Application | Nlnetlabs | Unbound | 1.9.0 | |||
| Application | Nlnetlabs | Unbound | 1.8.3 | |||
| Application | Nlnetlabs | Unbound | 1.8.2 | |||
| Application | Nlnetlabs | Unbound | 1.8.2 | |||
| Application | Nlnetlabs | Unbound | 1.8.1 | |||
| Application | Nlnetlabs | Unbound | 1.8.1 | |||
| Application | Nlnetlabs | Unbound | 1.8.0 | |||
| Application | Nlnetlabs | Unbound | 1.8.0 | |||
| Application | Nlnetlabs | Unbound | 1.7.3 |