VDB
CGA-xg2p-j58w-gvr2
CGA-xg2p-j58w-gvr2
PUBLISHED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Chainguard | bind-dnssec-tools | 0, 0, 0 |
| Wolfi | bind-libs | 0, 0, 0 |
| Wolfi | bind-tools | 0, 0, 0 |
| Wolfi | bind-plugins | 0, 0, 0 |
| Wolfi | bind-dnssec-tools | 0, 0, 0 |
| Wolfi | bind-dnssec-root | 0, 0, 0 |
| Chainguard | bind-dnssec-root | 0, 0, 0 |
| Chainguard | bind-doc | 0, 0, 0 |
| Wolfi | bind | 0, 0, 0 |
| Wolfi | bind-doc | 0, 0, 0 |
| Chainguard | bind-plugins | 0, 0, 0 |
| Chainguard | bind-tools | 0, 0, 0 |
| Wolfi | bind-dev | 0, 0, 0 |
| Chainguard | bind | 0, 0, 0 |
| Chainguard | bind-dev | 0, 0, 0 |
| Chainguard | bind-libs | 0, 0, 0 |
Exploit Intelligence
- Proof of Concept for CVE-2025-40778: BIND 9 DNS Cache Poisoning via unsolicited Additional Section records. (github-poc-repo)
- Forensic triage of DNS cache poisoning in legacy hardware. Includes PCAP analysis of 839-byte unsolicited record injections, CVE-2025-40778 mapping, and remediation via hardened Unbound (DoT) on Arch Linux. (github-poc-repo)
- Forensic triage of DNS cache poisoning in legacy hardware. Includes PCAP analysis of 839-byte unsolicited record injections, CVE-2025-40778 mapping, and remediation via hardened Unbound (DoT) on Arch Linux. (github-poc)
- Proof of Concept for CVE-2025-40778: BIND 9 DNS Cache Poisoning via unsolicited Additional Section records. (github-poc)
- 4628.1.0.yml (github-poc)
- probe_network.go (github-poc)
- test_scrapers.py (github-poc)
Timeline
- Jan 29, 2026 CVE Published
- Feb 4, 2026 CVE Updated