Powerdns · Powerdns Recursor · CVE-2019-3807
**Name of the Vulnerable Software and Affected Versions**
PowerDNS Recursor versions 4.1.x through 4.1.8
**Description**
An issue has been found where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to bypass DNSSEC validation.
**Recommendations**
For PowerDNS Recursor versions 4.1.x through 4.1.8, update to version 4.1.9 or later to resolve the issue.