Description

An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation.

Severity (CVSS)

Base score5.3
SeverityMedium
VersionCVSS 3.1
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Provided byCNA

Weaknesses

  • — Improper Input Validation
  • CWE-20 — CWE-20 Improper Input Validation

Affected products

VendorProductVersions
PowerDNSRecursor5.4.0 to <5.4.3

References

Authoritative sources

This page is a snapshot. For the latest enrichment and updates, view the record on CVE.org or the NVD.

Generated from the official CVE List on 26 Jun 2026 07:05 UTC.