Vulnerabilities > ISC > Bind > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2019-01-16	CVE-2017-3142	Improper Input Validation vulnerability in multiple products An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name may be able to circumvent TSIG authentication of AXFR requests via a carefully constructed request packet. network high complexity isc redhat debian CWE-20	3.7

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.