Описание
Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.5.2 (исключая)
cpe:2.3:a:nic:knot_resolver:*:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00377
Низкий
3.7 Low
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 3.7
ubuntu
около 8 лет назад
Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.
CVSS3: 3.7
debian
около 8 лет назад
Improper input validation bugs in DNSSEC validators components in Knot ...
CVSS3: 3.7
github
больше 3 лет назад
Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.
EPSS
Процентиль: 59%
0.00377
Низкий
3.7 Low
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-20