threat
engine
.sh
Back
·
··:··
Home
/
Product
/
powerdns authoritative
Product
powerdns authoritative
26 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-33611
>= 4.9.0 and < 4.9.14
An operator allowed to use the REST API can cause the Authoritative server to produce invalid HTTPS or SVCB record data, which can
6.5
MEDIUM
CVE-2026-33610
>= 4.9.0 and < 4.9.14
A rogue primary server may cause file descriptor exhaustion and eventually a denial of service, when a PowerDNS secondary server f
5.9
MEDIUM
CVE-2026-33609
>= 4.9.0 and < 4.9.14
Incomplete escaping of LDAP queries when running with 8bit-dns enabled allows users to perform queries of internal domain subtrees
5.3
MEDIUM
CVE-2026-33608
>= 4.9.0 and < 4.9.14
An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend
7.4
HIGH
CVE-2026-33260
>= 4.9.0 and < 4.9.14
An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of serv
5.3
MEDIUM
CVE-2026-33257
>= 4.9.0 and < 4.9.14
An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of serv
5.3
MEDIUM
CVE-2020-24698
<= 4.3.0
An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthentic
9.8
CRITICAL
CVE-2020-24697
<= 4.3.0
An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthentic
7.5
HIGH
CVE-2020-24696
<= 4.3.0
An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthentic
8.1
HIGH
CVE-2020-17482
< 4.3.1
An issue has been found in PowerDNS Authoritative Server before 4.3.1 where an authorized user with the ability to insert crafted
4.3
MEDIUM
CVE-2015-5230
>= 3.4.0 and < 3.4.6
The DNS packet parsing/generation code in PowerDNS (aka pdns) Authoritative Server 3.4.x before 3.4.6 allows remote attackers to c
7.5
HIGH
CVE-2019-10163
>= 4.0.0 and < 4.0.8
A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master
4.3
MEDIUM
CVE-2019-10162
>= 4.0.0 and < 4.0.8
A vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.10, 4.0.8 allowing an authorized user to cause
7.5
HIGH
CVE-2018-14626
>= 4.1.0 and <= 4.1.4
PowerDNS Authoritative Server 4.1.0 up to 4.1.4 inclusive and PowerDNS Recursor 4.0.0 up to 4.1.4 inclusive are vulnerable to a pa
5.3
MEDIUM
CVE-2018-10851
>= 3.3 and <= 4.1.4
PowerDNS Authoritative Server 3.3.0 up to 4.1.4 excluding 4.1.5 and 4.0.6, and PowerDNS Recursor 3.2 up to 4.1.4 excluding 4.1.5 a
5.3
MEDIUM
CVE-2016-2120
<= 3.4.10
An issue has been found in PowerDNS Authoritative Server versions up to and including 3.4.10, 4.0.1 allowing an authorized user to
7.5
HIGH
CVE-2016-7074
< 3.4.11
An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 4.0.4, allowing an attacker in position
5.3
MEDIUM
CVE-2016-7073
< 3.4.11
An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 4.0.4, allowing an attacker in position
5.3
MEDIUM
CVE-2016-7068
< 3.4.11
An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 3.7.4 and 4.0.4, allowing a remote, unau
5.3
MEDIUM
CVE-2016-7072
< 3.4.11
An issue has been found in PowerDNS Authoritative Server before 3.4.11 and 4.0.2 allowing a remote, unauthenticated attacker to ca
5.3
MEDIUM
CVE-2017-15091
>= 3.0 and <= 3.4.11
An issue has been found in the API component of PowerDNS Authoritative 4.x up to and including 4.0.4 and 3.x up to and including 3
7.1
HIGH
CVE-2016-5427
<= 3.4.9
PowerDNS (aka pdns) Authoritative Server before 3.4.10 does not properly handle a . (dot) inside labels, which allows remote attac
7.5
HIGH
CVE-2016-5426
<= 3.4.9
PowerDNS (aka pdns) Authoritative Server before 3.4.10 allows remote attackers to cause a denial of service (backend CPU consumpti
7.5
HIGH
CVE-2015-5311
all versions
PowerDNS (aka pdns) Authoritative Server 3.4.4 before 3.4.7 allows remote attackers to cause a denial of service (assertion failur
CVE-2015-5470
<= 3.3.2
The label decompression functionality in PowerDNS Recursor before 3.6.4 and 3.7.x before 3.7.3 and Authoritative (Auth) Server bef
CVE-2015-1868
all versions
The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Au
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin