CVE-2022-3347

CVE-2022-3347

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain.

Source: CVE-2022-3347

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다