CVE-2019-3807

Summary

An issue has been found in PowerDNS Recursor versions 4.1.x before 4.1.9 where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to bypass DNSSEC validation.

Affected Software

VendorProductVersion RangeStatus
Power DNSpdns-recursorversions 4.1.x before 4.1.9affected

Weaknesses

  • CWE-345: CWE-345

ADP Enrichment

CVE Program Container

Additional References

References