CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-38177

By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode available memory to the point where named crashes for lack of resources.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 62.7%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2022-38177

Isc » Bind » Version: 9.10.5

cpe:2.3:a:isc:bind:9.10.5
Isc » Bind » Version: 9.10.7

cpe:2.3:a:isc:bind:9.10.7
Isc » Bind » Version: 9.11.12

cpe:2.3:a:isc:bind:9.11.12
Isc » Bind » Version: 9.11.14-s1

cpe:2.3:a:isc:bind:9.11.14-s1
Isc » Bind » Version: 9.11.19-s1

cpe:2.3:a:isc:bind:9.11.19-s1
Isc » Bind » Version: 9.11.21

cpe:2.3:a:isc:bind:9.11.21
Isc » Bind » Version: 9.11.27

cpe:2.3:a:isc:bind:9.11.27
Isc » Bind » Version: 9.11.29

cpe:2.3:a:isc:bind:9.11.29
Isc » Bind » Version: 9.11.3

cpe:2.3:a:isc:bind:9.11.3
Isc » Bind » Version: 9.11.31

cpe:2.3:a:isc:bind:9.11.31
Isc » Bind » Version: 9.11.35

cpe:2.3:a:isc:bind:9.11.35
Isc » Bind » Version: 9.11.36

cpe:2.3:a:isc:bind:9.11.36
Isc » Bind » Version: 9.11.37

cpe:2.3:a:isc:bind:9.11.37
Isc » Bind » Version: 9.11.5

cpe:2.3:a:isc:bind:9.11.5
Isc » Bind » Version: 9.11.6

cpe:2.3:a:isc:bind:9.11.6
Isc » Bind » Version: 9.11.7

cpe:2.3:a:isc:bind:9.11.7
Isc » Bind » Version: 9.11.8

cpe:2.3:a:isc:bind:9.11.8
Isc » Bind » Version: 9.12.0

cpe:2.3:a:isc:bind:9.12.0
Isc » Bind » Version: 9.16.0

cpe:2.3:a:isc:bind:9.16.0
Isc » Bind » Version: 9.16.11

cpe:2.3:a:isc:bind:9.16.11
Isc » Bind » Version: 9.16.12

cpe:2.3:a:isc:bind:9.16.12
Isc » Bind » Version: 9.16.13

cpe:2.3:a:isc:bind:9.16.13
Isc » Bind » Version: 9.16.15

cpe:2.3:a:isc:bind:9.16.15
Isc » Bind » Version: 9.16.19

cpe:2.3:a:isc:bind:9.16.19
Isc » Bind » Version: 9.16.21

cpe:2.3:a:isc:bind:9.16.21
Isc » Bind » Version: 9.16.22

cpe:2.3:a:isc:bind:9.16.22
Isc » Bind » Version: 9.16.32

cpe:2.3:a:isc:bind:9.16.32
Isc » Bind » Version: 9.16.8

cpe:2.3:a:isc:bind:9.16.8
Isc » Bind » Version: 9.8.4

cpe:2.3:a:isc:bind:9.8.4
Isc » Bind » Version: 9.8.5

cpe:2.3:a:isc:bind:9.8.5
Isc » Bind » Version: 9.8.6

cpe:2.3:a:isc:bind:9.8.6
Isc » Bind » Version: 9.8.7

cpe:2.3:a:isc:bind:9.8.7
Isc » Bind » Version: 9.8.8

cpe:2.3:a:isc:bind:9.8.8
Isc » Bind » Version: 9.9.12

cpe:2.3:a:isc:bind:9.9.12
Isc » Bind » Version: 9.9.13

cpe:2.3:a:isc:bind:9.9.13
Isc » Bind » Version: 9.9.3

cpe:2.3:a:isc:bind:9.9.3
Netapp » Active Iq Unified Manager » Version: N/A

cpe:2.3:a:netapp:active_iq_unified_manager:-
Debian » Debian Linux » Version: 10.0

cpe:2.3:o:debian:debian_linux:10.0
Debian » Debian Linux » Version: 11.0

cpe:2.3:o:debian:debian_linux:11.0
Fedoraproject » Fedora » Version: 35

cpe:2.3:o:fedoraproject:fedora:35
Fedoraproject » Fedora » Version: 36

cpe:2.3:o:fedoraproject:fedora:36
Fedoraproject » Fedora » Version: 37

cpe:2.3:o:fedoraproject:fedora:37

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-38177

Products

Pricing

Contact Us