Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
powerdns recursor vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2014-3614
Unspecified vulnerability in PowerDNS Recursor (aka pdns_recursor) 3.6.x prior to 3.6.1 allows remote malicious users to cause a denial of service (crash) via an unknown sequence of malformed packets.
Powerdns Powerdns Recursor 3.6.0
445
VMScore
CVE-2006-4252
PowerDNS Recursor 3.1.3 and previous versions allows remote malicious users to cause a denial of service (resource exhaustion and application crash) via a CNAME record with a zero TTL, which triggers an infinite loop.
Powerdns Recursor 3.1
Powerdns Recursor 2.9.18
Powerdns Recursor 2.0 Rc1
Powerdns Recursor 3.1.2
Powerdns Recursor 3.0
Powerdns Recursor
Powerdns Recursor 2.9.15
Powerdns Recursor 3.1.1
Powerdns Recursor 3.0.1
Powerdns Recursor 2.9.17
Powerdns Recursor 2.8
Powerdns Recursor 2.9.16
445
VMScore
CVE-2006-2069
The recursor in PowerDNS prior to 3.0.1 allows remote malicious users to cause a denial of service (application crash) via malformed EDNS0 packets.
Powerdns Powerdns 3.0
383
VMScore
CVE-2022-27227
In PowerDNS Authoritative Server prior to 4.4.3, 4.5.x prior to 4.5.4, and 4.6.x prior to 4.6.1 and PowerDNS Recursor prior to 4.4.8, 4.5.x prior to 4.5.8, and 4.6.x prior to 4.6.1, insufficient validation of an IXFR end condition causes incomplete zone transfers to be handled as...
Powerdns Recursor
Powerdns Authoritative Server
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
383
VMScore
CVE-2020-14196
In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.
Powerdns Recursor
383
VMScore
CVE-2018-14644
An issue has been found in PowerDNS Recursor from 4.0.0 up to and including 4.1.4. A remote attacker sending a DNS query for a meta-type like OPT can lead to a zone being wrongly cached as failing DNSSEC validation. It only arises if the parent zone is signed, and all the authori...
Powerdns Recursor
383
VMScore
CVE-2016-7073
An issue has been found in PowerDNS prior to 3.4.11 and 4.0.2, and PowerDNS recursor prior to 4.0.4, allowing an attacker in position of man-in-the-middle to alter the content of an AXFR because of insufficient validation of TSIG signatures. A missing check of the TSIG time and f...
Powerdns Authoritative
Powerdns Recursor
Debian Debian Linux 8.0
383
VMScore
CVE-2016-7074
An issue has been found in PowerDNS prior to 3.4.11 and 4.0.2, and PowerDNS recursor prior to 4.0.4, allowing an attacker in position of man-in-the-middle to alter the content of an AXFR because of insufficient validation of TSIG signatures. A missing check that the TSIG record i...
Powerdns Authoritative
Powerdns Recursor
Debian Debian Linux 8.0
383
VMScore
CVE-2017-15090
An issue has been found in the DNSSEC validation component of PowerDNS Recursor from 4.0.0 and up to and including 4.0.6, where the signatures might have been accepted as valid even if the signed data was not in bailiwick of the DNSKEY used to sign it. This allows an attacker in ...
Powerdns Recursor
1 Article
383
VMScore
CVE-2017-15092
A cross-site scripting issue has been found in the web interface of PowerDNS Recursor from 4.0.0 up to and including 4.0.6, where the qname of DNS queries was displayed without any escaping, allowing a remote malicious user to inject HTML and Javascript code into the web interfac...
Powerdns Recursor
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »