CVE-2020-35857
HIGH WAF: Medium
CVSS 7.5
Published: 2020-12-31
CWE-400
An issue was discovered in the trust-dns-server crate before 0.18.1 for Rust. DNS MX and SRV null targets are mishandled, causing stack consumption.
WAF Coverage Analysis
Uncontrolled Resource Consumption
Medium WAF Coverage
OWASP: A05:2021 Security Misconfiguration
912xxx - DOS Protection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| trust-dns-server_project | trust-dns-server | 0.16.0 - 0.18.1 |
References
- github.com
- rustsec.org (Exploit, Third Party Advisory)