Vulnerabilities > Knot DNS > Knot DNS > 2.4.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-07-08 | CVE-2017-11104 | Improper Input Validation vulnerability in multiple products Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if no additional ACL restrictions are set, because of an improper TSIG validity period check. | 5.9 |