24h | 7d | 30d

Overview

  • ISC
  • BIND 9

16 Jul 2025
Published
22 Jul 2025
Updated

CVSS v3.1
HIGH (8.6)
EPSS
0.01%

KEV

Description

A `named` caching resolver that is configured to send ECS (EDNS Client Subnet) options may be vulnerable to a cache-poisoning attack. This issue affects BIND 9 versions 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.37-S1, and 9.20.9-S1 through 9.20.10-S1.

Statistics

  • 1 Post
  • 1 Interaction

Fediverse

Profile picture

🚨CVE-2025-40776: Cache Poisoning Vulnerability and CVE-2025-40777: Crash Vulnerability

FOFA Query: app="ISC-BIND-DNS"

Results: 15,918

FOFA: en.fofa.info/result?qbase64=YX

CVSS: 8.6 and 7.5

More Info: securityonline.info/isc-warns-

  • 0
  • 1
  • 5 hours ago
Showing 31 to 31 of 31 CVEs