Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 41 subscribers
  • Views 1456 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNS Server Recursive Query Cache Poisoning Weakness | Sophos XGS

Marcel Jordan

Good evening everyone, a customer of mine has currently patched an XGS firewall (SFOS 20.0.0 GA-Build222).

The customer had a vulnerability scan with a result of 1 Medium CVSS. Namely: DNS Server Recursive Query Cache Poisoning Weakness www.tenable.com/.../10539 What I can't fully understand because DNS is not released externally.

A scan against our firewall (same DNS settings) did NOT bring up the CVSS mentioned above! Can you tell me where this could come from? I don't know exactly where I can look on the firewall to solve the problem Thank you very much



This thread was automatically locked due to age.
  • 0

    You should rise a Sophos Support Case for this. 

    Could have a Variety of reasons like a NAT or something like that. 

    __________________________________________________________________________________________________________________

  • 0

    Hello Marcel,

    first check this here:

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

Unfiltered HTML