Denial of Service Vulnerability in Knot Resolver before 5.5.3

Denial of Service Vulnerability in Knot Resolver before 5.5.3

CVE-2022-40188 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service (CPU consumption) because of algorithmic complexity. During an attack, an authoritative server must return large NS sets or address sets.

Learn more about our Cis Benchmark Audit For Server Software.