vulnerability
FreeBSD: VID-F9C5A410-9B4E-11EA-AC3F-6805CA2FA271 (CVE-2020-12244): powerdns-recursor -- multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:P/I:N/A:N) | May 19, 2020 | May 28, 2020 | May 28, 2020 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Published
May 19, 2020
Added
May 28, 2020
Modified
May 28, 2020
Description
An issue has been found in PowerDNS Recursor 4.1.0 through 4.3.0 where records in the answer section of a NXDOMAIN response lacking an SOA were not properly validated in SyncRes::processAnswer, allowing an attacker to bypass DNSSEC validation.
Solution
freebsd-upgrade-package-powerdns-recursor
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.