Detections
Analytics
ISC BIND 9.11.0 < 9.18.41 / 9.11.3-S1 < 9.18.41-S1 / 9.18.0 < 9.18.41 / 9.18.11-S1 < 9.18.41-S1 / 9.20.0 < 9.20.15 / 9.20.9-S1 < 9.20.15-S1 / 9.21.0 < 9.21.14 Vulnerability (cve-2025-40778)
high Nessus Plugin ID 298819
Synopsis
The remote name server is affected by a vulnerability vulnerability.Description
The version of ISC BIND installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the cve-2025-40778 advisory.- Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.39-S1, and 9.20.9-S1 through 9.20.13-S1. (CVE-2025-40778)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade to ISC BIND version 9.18.41 / 9.18.41-S1 / 9.20.15 / 9.20.15-S1 / 9.21.14 or later.See Also
Plugin Details
Severity: High
ID: 298819
File Name: bind9_92114_cve-2025-40778.nasl
Version: 1.1
Type: remote
Family: DNS
Published: 2/12/2026
Updated: 2/12/2026
Configuration: Enable paranoid mode
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.1
CVSS v2
Risk Factor: High
Base Score: 7.8
Temporal Score: 6.1
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:C/A:N
CVSS Score Source: CVE-2025-40778
CVSS v3
Risk Factor: High
Base Score: 8.6
Temporal Score: 7.7
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:isc:bind
Required KB Items: bind/version, Settings/ParanoidReport
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 10/22/2025
Vulnerability Publication Date: 10/22/2025
Reference Information
CVE: CVE-2025-40778