vulnerability

ISC BIND: BIND's database will be slow if a very large number of RRs exist at the same name (CVE-2024-1737)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:N/A:C)	Jul 24, 2024	Jul 24, 2024	Aug 11, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

Jul 24, 2024

Added

Jul 24, 2024

Modified

Aug 11, 2025

Description

Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname (of any RTYPE) can suffer from degraded performance as content is being added or updated, and also when handling client queries for this name.
This issue affects BIND 9 versions 9.11.0 through 9.11.37, 9.16.0 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.4-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.50-S1, and 9.18.11-S1 through 9.18.27-S1.

Solution

upgrade-isc-bind-latest

References

CVE-2024-1737
https://attackerkb.com/topics/CVE-2024-1737
CWE-770
URL-https://kb.isc.org/docs/cve-2024-1737

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today