The default access control lists (ACL) in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which allows remote attackers to make recursive queries and query the cache.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.03209
Percentile: 0.86506

CVSS Scoring

Affected Products

• cpe:2.3:a:isc:bind:9.4.0:*:*:*:*:*:*:*
• cpe:2.3:a:isc:bind:9.4.1:*:*:*:*:*:*:*
• cpe:2.3:a:isc:bind:9.5.0:*:*:*:*:*:*:*

← Back to Home