Vulnerabilities (CVE)

Filtered by vendor Openstack Subscribe
Filtered by product Designate
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-5695 1 Openstack 1 Designate 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
Designate 2015.1.0 through 1.0.0.0b1 as packaged in OpenStack Kilo does not enforce RecordSets per domain, and Records per RecordSet quotas when processing an internal zone file transfer, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted resource record set.
CVE-2015-5694 3 Debian, Openstack, Redhat 3 Debian Linux, Designate, Enterprise Linux Openstack Platform 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
Designate does not enforce the DNS protocol limit concerning record set sizes