High severity7.5NVD Advisory· Published Jul 23, 2024· Updated Apr 15, 2026

CVE-2024-0760

Description

A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.openwall.com/lists/oss-security/2024/07/23/1nvd
www.openwall.com/lists/oss-security/2024/07/31/2nvd
kb.isc.org/docs/cve-2024-0760nvd
security.netapp.com/advisory/ntap-20240731-0004/nvd

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.013
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000