Input validation

2018-01-2218:29:00

PRIOn knowledge base

www.prio-n.com

4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.6%

JSON

Improper input validation bugs in DNSSEC validators components in PowerDNS version 4.1.0 allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.

CPENameOperatorVersion
recursoreq4.1.0

CPE	Name	Operator	Version
	recursor	eq	4.1.0

References

doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2018-01.html