Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 21/01/2023 Updated: 31/01/2023

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 0

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1.

Vulnerable Product	Search on Vulmon	Subscribe to Product
powerdns recursor 4.8.0

Debian Bug report logs - #1029367 pdns-recursor: CVE-2023-22617 Package: src:pdns-recursor; Maintainer for src:pdns-recursor is pdns-recursor packagers <pdns-recursor@packagesdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 21 Jan 2023 21:09:04 UTC Severity: grave Tags: security, upstrea ...

CWE-674 https://docs.powerdns.com/recursor/changelog/4.8.html#change-4.8.1 https://docs.powerdns.com/recursor/security-advisories/http://www.openwall.com/lists/oss-security/2023/01/20/1 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029367 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-22617

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect