Known Vulnerabilities for products from Isc
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Isc".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-5950 json | An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during bad-server handling, enabling a rem... | Not Provided | 2026-05-20 | 2026-05-21 |
| CVE-2026-5947 json | Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIND receives an incoming DN... | Not Provided | 2026-05-20 | 2026-05-21 |
| CVE-2026-5946 json | Multiple flaws have been identified in `named` related to the handling of DNS messages whose CLASS is not Internet (`IN`) —... | Not Provided | 2026-05-20 | 2026-05-21 |
| CVE-2026-3593 json | A use-after-free vulnerability exists within the DNS-over-HTTPS implementation. This issue affects BIND 9 versions 9.20.0 thr... | Not Provided | 2026-05-20 | 2026-05-21 |
| CVE-2026-3592 json | BIND resolvers are vulnerable to an amplified resource consumption/exhaustion attack. If a victim resolver makes a query to ... | Not Provided | 2026-05-20 | 2026-05-21 |
| CVE-2026-3591 json | A use-after-return vulnerability exists in the `named` server when handling DNS queries signed with SIG(0). Using a specially... | Not Provided | 2026-03-25 | 2026-05-21 |
| CVE-2026-3119 json | Under certain conditions, `named` may crash when processing a correctly signed query containing a TKEY record. The affected c... | Not Provided | 2026-03-25 | 2026-05-21 |
| CVE-2026-3104 json | A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domain. This issue a... | Not Provided | 2026-03-25 | 2026-05-21 |
| CVE-2026-3039 json | BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessive memory consu... | Not Provided | 2026-05-20 | 2026-05-21 |
| CVE-2026-1519 json | If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excess... | Not Provided | 2026-03-25 | 2026-05-21 |
| CVE-2023-4236 json | A flaw in the networking code handling DNS-over-TLS queries may cause `named` to terminate unexpectedly due to an assertion f... | 7.5 - HIGH | 2023-09-20 | 2024-02-01 |
| CVE-2023-3341 json | The code that processes control channel messages sent to `named` calls certain functions recursively during packet parsing. R... | 7.5 - HIGH | 2023-09-20 | 2024-01-31 |
| CVE-2023-2911 json | If the `recursive-clients` quota is reached on a BIND 9 resolver configured with both `stale-answer-enable yes;` and `stale-a... | 7.5 - HIGH | 2023-06-21 | 2023-07-03 |
| CVE-2023-2829 json | A `named` instance configured to run as a DNSSEC-validating recursive resolver with the Aggressive Use of DNSSEC-Validated Ca... | 7.5 - HIGH | 2023-06-21 | 2023-07-03 |
| CVE-2023-2828 json | Every `named` instance configured to run as a recursive resolver maintains a cache database holding the responses to the quer... | 7.5 - HIGH | 2023-06-21 | 2023-07-21 |
| CVE-2022-38178 json | By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker can trigger a small memory ... | 7.5 - HIGH | 2022-09-21 | 2023-11-07 |
| CVE-2022-38177 json | By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory ... | 7.5 - HIGH | 2022-09-21 | 2023-11-07 |
| CVE-2022-3924 json | This issue can affect BIND 9 resolvers with `stale-answer-enable yes;` that also make use of the option `stale-answer-client-... | 7.5 - HIGH | 2023-01-26 | 2023-11-07 |
| CVE-2022-3736 json | BIND 9 resolver can crash when stale cache and stale answers are enabled, option `stale-answer-client-timeout` is set to a po... | 7.5 - HIGH | 2023-01-26 | 2023-11-07 |
| CVE-2022-3488 json | Processing of repeated responses to the same query, where both responses contain ECS pseudo-options, but where the first is b... | 7.5 - HIGH | 2023-01-26 | 2023-11-07 |
Known software with vulnerabilities from Isc
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Isc | Bind | - |
| Application | Isc | Dhcp | 3.0 |
| Application | Isc | Dhcpd | - |
| Application | Isc | Dhcp Client | - |
| Application | Isc | Dnsco Bind | 9.9.3 |
| Application | Isc | Inn | - |
| Application | Isc | Kea | 0.9.2 |