Veracode Vulnerability DatabaseVERACODE:34851Insecure Authentication
0.003 Low
EPSS
Percentile
65.9%
PowerDNS has insecure authentication. The vulnerability exists due to a lack of insufficient validation of an IXFR end condition which causes incomplete zone transfers to be handled as successful transfers.
References
www.openwall.com/lists/oss-security/2022/03/25/1
doc.powerdns.com/authoritative/security-advisories/index.html
doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2022-01.html
docs.powerdns.com/recursor/security-advisories/index.html
docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2022-01.html
lists.fedoraproject.org/archives/list/[email protected]/message/2QKN56VWXUVFOYGUN75N5IRNK66OHTHT/
lists.fedoraproject.org/archives/list/[email protected]/message/HEABZA46XYEUWMGSY2GYYVHISBVWEHIO/
lists.fedoraproject.org/archives/list/[email protected]/message/IPHOFNI7FKM5NNOVDOWO4TBXFAFICCUE/
lists.fedoraproject.org/archives/list/[email protected]/message/ZJSKICB67SPPEGNXCQLZVSWR6QGCN3KP/
secdb.alpinelinux.org/edge/community.yaml
Related
