CVE-2023-26437
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
04/04/2023
Last modified:
13/02/2025
Description
Denial of service vulnerability in PowerDNS Recursor allows authoritative servers to be marked unavailable.This issue affects Recursor: through 4.6.5, through 4.7.4 , through 4.8.3.
Impact
Base Score 3.x
3.40
Severity 3.x
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:powerdns:recursor:*:*:*:*:*:*:*:* | 4.6.6 (excluding) | |
| cpe:2.3:a:powerdns:recursor:*:*:*:*:*:*:*:* | 4.7.0 (including) | 4.7.5 (excluding) |
| cpe:2.3:a:powerdns:recursor:*:*:*:*:*:*:*:* | 4.8.0 (including) | 4.8.4 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2023-02.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CN7VMRYKZHG2UDUAK326LXD3JY7NO3LR/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IHPD6SIQOG7245GXFQHPUEI4AZ6Y3KD6/
- https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2023-02.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CN7VMRYKZHG2UDUAK326LXD3JY7NO3LR/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IHPD6SIQOG7245GXFQHPUEI4AZ6Y3KD6/