0.001 Low
EPSS
Percentile
31.3%
dnslib is vulnerable to DNS spoofing attacks. A remote unauthenticated attacker is able to potentially deceive the user with a malicious DNS ID because the library does not verify whether the ID value in a DNS reply matches an ID value in a query.
github.com/paulc/dnslib/commit/76e8677699ed098387d502c57980f58da642aeba
github.com/paulc/dnslib/issues/30