CVE-2022-2906 — Vulnetix

CVE-2022-2906 PUBLISHED CVSS 9.300000190734863 CRITICAL

BIND (Berkeley Internet Name Domain) ist ein Open-Source-Softwarepaket, das einen Domain-Name-System-Server implementiert.

EPSS 0.86% · 75.4th percentile

Risk Scores

CVSS 4.0

9.300000190734863

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.86%

75.4th percentile

Affected Products

Vendor	Product	Versions
IBM	IBM VIOS 3.1
Ubuntu	Ubuntu Linux
IBM	IBM Storwize
Red Hat	Red Hat OpenShift Data Foundation 4
IBM	IBM AIX 7.3
IBM	IBM Power Hardware Management Console v10
IBM	IBM QRadar SIEM 7.4
SUSE	SUSE Linux
Broadcom	Broadcom Brocade SANnav <2.3.1b
Gentoo	Gentoo Linux
Open Source	Open Source CentOS
Oracle	Oracle Solaris
Infoblox	Infoblox NIOS
Internet Systems Consortium	Internet Systems Consortium BIND <9.19.1
Internet Systems Consortium	Internet Systems Consortium BIND <9.18.7
IBM	IBM SAN Volume Controller
IBM	IBM AIX 7.2
NetApp	NetApp Data ONTAP 9
F5	F5 BIG-IP
Amazon	Amazon Linux 2

…and 10 more

Timeline

Sep 20, 2022 CVE Published
Sep 22, 2022 EPSS Score
Nov 6, 2022 EPSS Score
Dec 20, 2022 EPSS Score
Feb 3, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 20, 2023 EPSS Score
May 3, 2023 EPSS Score
Jun 17, 2023 EPSS Score
Sep 15, 2023 EPSS Score
Oct 29, 2023 EPSS Score
Dec 13, 2023 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1492.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1492 advisory
https://downloads.isc.org/isc/bind9/9.16.33/doc/arm/html/notes.html advisory
https://downloads.isc.org/isc/bind9/9.18.7/doc/arm/html/notes.html advisory
https://downloads.isc.org/isc/bind9/9.19.1/doc/arm/html/notes.html advisory
https://kb.isc.org/docs/cve-2022-2795 advisory
https://kb.isc.org/docs/cve-2022-2881 advisory
https://kb.isc.org/docs/cve-2022-2906 advisory
https://kb.isc.org/docs/cve-2022-3080 advisory
https://kb.isc.org/docs/cve-2022-38177 advisory
https://kb.isc.org/docs/cve-2022-38178 advisory
https://ubuntu.com/security/notices/USN-5626-2 advisory
https://support.infoblox.com/s/article/CVE-2022-38177-and-CVE-2022-38178 advisory
https://support.infoblox.com/s/article/CVE-2022-2795 advisory
https://ubuntu.com/security/notices/USN-5626-1 advisory
https://lists.debian.org/debian-security-announce/2022/msg00204.html advisory
https://www.debian.org/security/2022/dsa-5235 advisory
http://linux.oracle.com/errata/ELSA-2022-6765.html advisory
https://access.redhat.com/errata/RHSA-2022:6763 advisory
https://access.redhat.com/errata/RHSA-2022:6764 advisory

…and 46 more

Open in Interactive Console →

$ Console Community · 100/wk Open console ›