CVE-2026-33260
- EPSS 0.52%
- Veröffentlicht 22.04.2026 10:16:51
- Zuletzt bearbeitet 27.04.2026 17:03:22
An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal web server is disabled by default.
CVE-2026-33257
- EPSS 0.51%
- Veröffentlicht 22.04.2026 10:16:51
- Zuletzt bearbeitet 27.04.2026 17:03:56
An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal web server is disabled by default.
CVE-2020-17482
- EPSS 2.59%
- Veröffentlicht 02.10.2020 09:15:13
- Zuletzt bearbeitet 21.11.2024 05:08:12
An issue has been found in PowerDNS Authoritative Server before 4.3.1 where an authorized user with the ability to insert crafted records into a zone might be able to leak the content of uninitialized memory.
CVE-2020-24698
- EPSS 3.16%
- Veröffentlicht 02.10.2020 09:15:13
- Zuletzt bearbeitet 21.11.2024 05:15:49
An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker might be able to cause a double-free, leading to a crash or possibly arbitrary code execution. by sending ...
CVE-2020-24697
- EPSS 4.41%
- Veröffentlicht 02.10.2020 09:15:13
- Zuletzt bearbeitet 21.11.2024 05:15:49
An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker can cause a denial of service by sending crafted queries with a GSS-TSIG signature.
CVE-2020-24696
- EPSS 1.36%
- Veröffentlicht 02.10.2020 09:15:13
- Zuletzt bearbeitet 21.11.2024 05:15:49
An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker can trigger a race condition leading to a crash, or possibly arbitrary code execution, by sending crafted ...
CVE-2015-5230
- EPSS 9.02%
- Veröffentlicht 15.01.2020 17:15:13
- Zuletzt bearbeitet 21.11.2024 02:32:36
The DNS packet parsing/generation code in PowerDNS (aka pdns) Authoritative Server 3.4.x before 3.4.6 allows remote attackers to cause a denial of service (crash) via crafted query packets.
CVE-2019-10163
- EPSS 1%
- Veröffentlicht 30.07.2019 23:15:12
- Zuletzt bearbeitet 21.11.2024 04:18:33
A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master server to cause a high CPU load or even prevent any further updates to any slave zone by sending a large number of NOTIF...
CVE-2019-10162
- EPSS 1.69%
- Veröffentlicht 30.07.2019 23:15:12
- Zuletzt bearbeitet 21.11.2024 04:18:33
A vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.10, 4.0.8 allowing an authorized user to cause the server to exit by inserting a crafted record in a MASTER type zone under their control. The issue is due to the fac...
CVE-2018-14626
- EPSS 2.72%
- Veröffentlicht 29.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 03:49:27
PowerDNS Authoritative Server 4.1.0 up to 4.1.4 inclusive and PowerDNS Recursor 4.0.0 up to 4.1.4 inclusive are vulnerable to a packet cache pollution via crafted query that can lead to denial of service.