unbound (SUSE:Linux Enterprise Module for Basesystem 15 SP1) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Basesystem 15 SP1 package unbound, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2020-12662 — CVSS 7.5 (high): Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains…
CVE-2020-12663 — CVSS 7.5 (high): Unbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers.
CVE-2019-18934 — CVSS 7.3 (high): Unbound 1.6.4 through 1.9.4 contain a vulnerability in the ipsec module that can cause shell code execution after receiving a specially…