Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2022-2906

An attacker can leverage this flaw to gradually erode available memory to the point where named crashes for lack of resources. Upon restart the attacker would have to begin again, but nevertheless there is the potential to deny service.

  • Published: Sep 21, 2022
  • Updated: Apr 14, 2023
  • CVE: CVE-2022-2906
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWEs:

Software From Fixed in
isc / bind 9.18.0 9.18.7
isc / bind 9.19.0 9.19.5