Github.com/peterzen/goresolver

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2022-3347	GitHub.com/peterzen/goresolver Github.com/peterzen/goresolver		0.00	—	0.00		Dec 27, 2022	DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain.
CVE-2022-3346	GitHub.com/peterzen/goresolver Github.com/peterzen/goresolver		0.00	—	0.00		Dec 27, 2022	DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. The owner name of RRSIG RRs is not validated, permitting an attacker to present the RRSIG for an attacker-controlled domain…

CVE-2022-3347Dec 27, 2022
GitHub.com/peterzen/goresolver
Github.com/peterzen/goresolver
risk 0.00cvss —epss 0.00
DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain.
CVE-2022-3346Dec 27, 2022
GitHub.com/peterzen/goresolver
Github.com/peterzen/goresolver
risk 0.00cvss —epss 0.00
DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. The owner name of RRSIG RRs is not validated, permitting an attacker to present the RRSIG for an attacker-controlled domain…