Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:1 p.m.11 views

CVE-2022-3346

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. The owner name of RRSIG RRs is not validated, permitting an attacker to present the RRSIG for an attacker-controlled domain in a response for...

6.5CVSS6.7AI score0.00227EPSS
Exploits0References1
OSV
OSV
added 2022/12/28 3:15 a.m.6 views

CVE-2022-3346

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. The owner name of RRSIG RRs is not validated, permitting an attacker to present the RRSIG for an attacker-controlled domain in a response for...

6.5CVSS5.8AI score0.00227EPSS
Exploits0References2
NVD
NVD
added 2022/12/28 3:15 a.m.30 views

CVE-2022-3346

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. The owner name of RRSIG RRs is not validated, permitting an attacker to present the RRSIG for an attacker-controlled domain in a response for...

6.5CVSS0.00227EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/12/27 9:17 p.m.42 views

CVE-2022-3346 Incorrect DNSSEC validation due to unchecked owner names in github.com/peterzen/goresolver

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. The owner name of RRSIG RRs is not validated, permitting an attacker to present the RRSIG for an attacker-controlled domain in a response for...

6.6AI score0.00227EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/12/27 9:17 p.m.8 views

CVE-2022-3346 Incorrect DNSSEC validation due to unchecked owner names in github.com/peterzen/goresolver

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. The owner name of RRSIG RRs is not validated, permitting an attacker to present the RRSIG for an attacker-controlled domain in a response for...

6.4AI score0.00227EPSS
Exploits0References2
Rows per page
Query Builder