Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-jh5e-m42g-4bb3
Vulnerability ID VCID-jh5e-m42g-4bb3
Aliases CVE-2024-4076
Summary bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content
Status Published
Exploitability 0.5
Weighted Severity 6.8
Risk 3.4
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
cvssv3 7.5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4076.json
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-4076
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-4076
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-4076
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-4076
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-4076
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-4076
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-4076
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-4076
cvssv3.1 7.5 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3.1 7.5 https://kb.isc.org/docs/cve-2024-4076
ssvc Track https://kb.isc.org/docs/cve-2024-4076
cvssv3.1 7.5 http://www.openwall.com/lists/oss-security/2024/07/23/1
ssvc Track http://www.openwall.com/lists/oss-security/2024/07/23/1
cvssv3.1 7.5 http://www.openwall.com/lists/oss-security/2024/07/31/2
ssvc Track http://www.openwall.com/lists/oss-security/2024/07/31/2
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4076.json
https://api.first.org/data/v1/epss?cve=CVE-2024-4076
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1737
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1975
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4076
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1 http://www.openwall.com/lists/oss-security/2024/07/23/1
2 http://www.openwall.com/lists/oss-security/2024/07/31/2
2298904 https://bugzilla.redhat.com/show_bug.cgi?id=2298904
cve-2024-4076 https://kb.isc.org/docs/cve-2024-4076
RHSA-2024:5231 https://access.redhat.com/errata/RHSA-2024:5231
RHSA-2024:5390 https://access.redhat.com/errata/RHSA-2024:5390
RHSA-2024:5418 https://access.redhat.com/errata/RHSA-2024:5418
RHSA-2024:5525 https://access.redhat.com/errata/RHSA-2024:5525
RHSA-2024:5813 https://access.redhat.com/errata/RHSA-2024:5813
RHSA-2024:5907 https://access.redhat.com/errata/RHSA-2024:5907
RHSA-2024:6004 https://access.redhat.com/errata/RHSA-2024:6004
RHSA-2024:6013 https://access.redhat.com/errata/RHSA-2024:6013
USN-6909-1 https://usn.ubuntu.com/6909-1/
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4076.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://kb.isc.org/docs/cve-2024-4076
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-23T15:10:37Z/ Found at https://kb.isc.org/docs/cve-2024-4076
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at http://www.openwall.com/lists/oss-security/2024/07/23/1
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-23T15:10:37Z/ Found at http://www.openwall.com/lists/oss-security/2024/07/23/1
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at http://www.openwall.com/lists/oss-security/2024/07/31/2
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-23T15:10:37Z/ Found at http://www.openwall.com/lists/oss-security/2024/07/31/2
Exploit Prediction Scoring System (EPSS)
Percentile 0.20458
EPSS Score 0.00066
Published At April 2, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:46:08.120330+00:00 RedHat Importer Import https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4076.json 38.0.0