CVE-2016-0747
CVSS v3.1
5.3 (Medium)
CVSS v2.0
5 (Medium)
EPSS
1.06 % (84th)
Affected Products
5
Advisories
9
The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME resolution, which allows remote attackers to cause a denial of service (worker process resource consumption) via vectors related to arbitrary name resolution.
Weaknesses
- CWE-400
- Uncontrolled Resource Consumption
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2016-02-15 19:59:02
(8 years ago) - Updated Date
-
2021-12-16 18:43:52
(2 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...