Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how isc compares to other vendors in security performance

View Risk Score →

oss-secCoordinated Disclosuin the LLM Age

First published (updated )
https://seclists.org/oss-sec/2026/q2/675

oss-secCoordinated Disclosuin the LLM Age

First published (updated )
https://seclists.org/oss-sec/2026/q2/631

ISC BINDUnbounded resend loop in BIND 9 resolver

Risk 29
Severity
5.3
Trending
Week
First published (updated )
CVE-2026-5950

ISC BINDSIG(0) validation during query flood may lead to undefined behavior

Risk 46
Severity
7.5
Trending
Week
First published (updated )
CVE-2026-5947

ISC BINDInvalid handling of CLASS != IN

Risk 46
Severity
7.5
Trending
Week
First published (updated )
CVE-2026-5946
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

ISC BINDHeap use-after-free vulnerability in BIND 9 DNS-over-HTTPS implementation

Risk 91
Severity
9.8
Trending
Week
First published (updated )
CVE-2026-3593

ISC BINDAmplification vulnerabilities via self-pointed glue records

Risk 28
Severity
5.3
First published (updated )
CVE-2026-3592

ISC BINDBIND 9 server memory exhaustion during GSS-API TKEY negotiation

Risk 46
Severity
7.5
Trending
Week
First published (updated )
CVE-2026-3039

FreeBSD FreeBSDRemote code execution via malicious DHCP options

Risk 78
Severity
8.1
First published (updated )
CVE-2026-42511

PowerDNS recursorNull pointer dereference in RPZ transfer

Risk 31
Severity
4.9
First published (updated )
CVE-2026-33600
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

ISC BIND 9If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the re…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2451305

ISC BINDA stack use-after-return flaw in SIG(0) handling code may enable ACL bypass

Risk 26
Severity
5.4
EPSS
0.02%
First published (updated )
CVE-2026-3591

ISC BINDAuthenticated query containing a TKEY record may cause named to terminate unexpectedly

Risk 40
Severity
6.5
First published (updated )
CVE-2026-3119

ISC BINDMemory leak in code preparing DNSSEC proofs of non-existence

Risk 46
Severity
7.5
First published (updated )
CVE-2026-3104

ISC BINDExcessive NSEC3 iterations cause high CPU load during insecure delegation validation

Risk 46
Severity
7.5
First published (updated )
CVE-2026-1519
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

ISC keaSending a maliciously crafted message to the kea-ctrl-agent, kea-dhcp-ddns, kea-dhcp4, or kea-dhcp6 …

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2451139

ISC keaStack overflow in Kea daemons

Risk 31
Severity
7.5
EPSS
0.03%
First published (updated )
CVE-2026-3608

ISC BIND 9Malformed BRID/HHIT records can cause named to terminate unexpectedly

Risk 46
Severity
7.5
First published (updated )
CVE-2025-13878

ISC keaTo trigger the issue, three configuration parameters must have specific settings: "hostname-char-set…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2407178

ISC keaInvalid characters cause assert

Risk 43
Severity
7.5
First published (updated )
CVE-2025-11232
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

ISC has disclosed one vulnerability in Kea (CVE-2025-11232)

First published (updated )
https://seclists.org/oss-sec/2025/q4/98

[Critical] BIND9 DNS Cache Poisoning Vulnerability CVE-2025-40778 - 706K+ Instances Affected, PoC Public

First published (updated )
Social
reddit

Microsoft cbl2 bind 9.16.50-2Resource exhaustion via malformed DNSKEY handling

Risk 46
Severity
7.5
First published (updated )
CVE-2025-8677

F5 BIG-IP DNSCache poisoning due to weak PRNG

Risk 53
Severity
8.6
First published (updated )
CVE-2025-40780

ISC BINDIn specific circumstances, due to a weakness in the Pseudo Random Number Generator (PRNG) that is us…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2405829
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Microsoft cbl2 bind 9.16.50-2Cache poisoning attacks with unsolicited RRs

Risk 53
Severity
8.6
First published (updated )
CVE-2025-40778

ISC BINDUnder certain circumstances, BIND is too lenient when accepting records from answers, allowing an at…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2405827

ISC StorkDoS attack against the Stork UI from an unauthenticated user

Risk 31
Severity
7.5
EPSS
0.06%
First published (updated )
CVE-2025-8696

ISC keaKea crash upon interaction between specific client options and subnet selection

Risk 43
Severity
7.5
First published (updated )
CVE-2025-40779

ISC BIND 9A possible assertion failure when 'stale-answer-client-timeout' is set to '0'

Risk 43
Severity
7.5
First published (updated )
CVE-2025-40777
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203