CVE-2016-0746
CVSS v3.1
9.8 (Critical)
CVSS v2.0
7.5 (High)
EPSS
4.47 % (93th)
Affected Products
5
Advisories
9
Use-after-free vulnerability in the resolver in nginx 0.6.18 through 1.8.0 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (worker process crash) or possibly have unspecified other impact via a crafted DNS response related to CNAME response processing.
Weaknesses
- CWE-416
- Use After Free
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2016-02-15 19:59:01
(8 years ago) - Updated Date
-
2021-12-16 18:43:07
(2 years ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...