VYPR
Unrated severityNVD Advisory· Published Apr 27, 2021· Updated Aug 5, 2024

CVE-2019-25031

CVE-2019-25031

Description

Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session. NOTE: The vendor does not consider this a vulnerability of the Unbound software. create_unbound_ad_servers.sh is a contributed script from the community that facilitates automatic configuration creation. It is not part of the Unbound installation

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

24

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.