CVE-2019-10190
- EPSS 0.26%
- Veröffentlicht 16.07.2019 18:15:12
- Zuletzt bearbeitet 21.11.2024 04:18:37
A vulnerability was discovered in DNS resolver component of knot resolver through version 3.2.0 before 4.1.0 which allows remote attackers to bypass DNSSEC validation for non-existence answer. NXDOMAIN answer would get passed through to the client ev...
CVE-2019-10191
- EPSS 0.27%
- Veröffentlicht 16.07.2019 18:15:12
- Zuletzt bearbeitet 21.11.2024 04:18:37
A vulnerability was discovered in DNS resolver of knot resolver before version 4.1.0 which allows remote attackers to downgrade DNSSEC-secure domains to DNSSEC-insecure state, opening possibility of domain hijack using attacks against insecure DNS pr...
CVE-2018-10920
- EPSS 12.2%
- Veröffentlicht 02.08.2018 13:29:00
- Zuletzt bearbeitet 21.11.2024 03:42:18
Improper input validation bug in DNS resolver component of Knot Resolver before 2.4.1 allows remote attacker to poison cache.
CVE-2018-1000002
- EPSS 0.38%
- Veröffentlicht 22.01.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 03:39:23
Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.