Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V14 - Config

Misconfigured DNS - Missing Certification Authority Authorization (CAA) Record

POC

  • You can view a domain’s CAA rule using a DNS lookup service: https://dns.google.com/query?name=target.com&type=xxx&dnssec=true

Impact

Low

Likelihood

Low