CVE-2019-3807
3.7
CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N
Summary
An issue has been found in PowerDNS Recursor versions 4.1.x before 4.1.9 where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to bypass DNSSEC validation.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Power DNS | pdns-recursor | versions 4.1.x before 4.1.9 | affected |
Weaknesses
- CWE-345: CWE-345
ADP Enrichment
CVE Program Container
Additional References
- https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2019-02.html
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3807
References
- https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2019-02.html
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3807
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.