Powerdns Authoritative — known CVE vulnerabilities
Every CVE whose affected-product data names Powerdns Authoritative, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (31)
CVE-2020-24698 — CVSS 9.8 (critical): An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated…
CVE-2020-24696 — CVSS 8.1 (high): An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated…
CVE-2015-1868 — CVSS 7.8 (high): The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth)…
CVE-2015-5470 — CVSS 7.8 (high): The label decompression functionality in PowerDNS Recursor before 3.6.4 and 3.7.x before 3.7.3 and Authoritative (Auth) Server before 3.3.3…
CVE-2016-5426 — CVSS 7.5 (high): PowerDNS (aka pdns) Authoritative Server before 3.4.10 allows remote attackers to cause a denial of service (backend CPU consumption) via a…
CVE-2019-10162 — CVSS 7.5 (high): A vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.10, 4.0.8 allowing an authorized user to cause the…
CVE-2020-24697 — CVSS 7.5 (high): An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated…
CVE-2016-5427 — CVSS 7.5 (high): PowerDNS (aka pdns) Authoritative Server before 3.4.10 does not properly handle a . (dot) inside labels, which allows remote attackers to…
CVE-2015-5230 — CVSS 7.5 (high): The DNS packet parsing/generation code in PowerDNS (aka pdns) Authoritative Server 3.4.x before 3.4.6 allows remote attackers to cause a…
CVE-2016-2120 — CVSS 7.5 (high): An issue has been found in PowerDNS Authoritative Server versions up to and including 3.4.10, 4.0.1 allowing an authorized user to crash…
CVE-2026-33608 — CVSS 7.4 (high): An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update…
CVE-2017-15091 — CVSS 7.1 (high): An issue has been found in the API component of PowerDNS Authoritative 4.x up to and including 4.0.4 and 3.x up to and including 3.4.11…
CVE-2026-33611 — CVSS 6.5 (medium): An operator allowed to use the REST API can cause the Authoritative server to produce invalid HTTPS or SVCB record data, which can in turn…
CVE-2026-33610 — CVSS 5.9 (medium): A rogue primary server may cause file descriptor exhaustion and eventually a denial of service, when a PowerDNS secondary server forwards a…
CVE-2016-7073 — CVSS 5.3 (medium): An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 4.0.4, allowing an attacker in position of…
CVE-2016-7072 — CVSS 5.3 (medium): An issue has been found in PowerDNS Authoritative Server before 3.4.11 and 4.0.2 allowing a remote, unauthenticated attacker to cause a…
CVE-2026-33257 — CVSS 5.3 (medium): An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The…
CVE-2026-33260 — CVSS 5.3 (medium): An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The…
CVE-2016-7068 — CVSS 5.3 (medium): An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 3.7.4 and 4.0.4, allowing a remote…
CVE-2026-33609 — CVSS 5.3 (medium): Incomplete escaping of LDAP queries when running with 8bit-dns enabled allows users to perform queries of internal domain subtrees.
CVE-2018-14626 — CVSS 5.3 (medium): PowerDNS Authoritative Server 4.1.0 up to 4.1.4 inclusive and PowerDNS Recursor 4.0.0 up to 4.1.4 inclusive are vulnerable to a packet…
CVE-2018-10851 — CVSS 5.3 (medium): PowerDNS Authoritative Server 3.3.0 up to 4.1.4 excluding 4.1.5 and 4.0.6, and PowerDNS Recursor 3.2 up to 4.1.4 excluding 4.1.5 and 4.0.9…
CVE-2016-7074 — CVSS 5.3 (medium): An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 4.0.4, allowing an attacker in position of…
CVE-2015-5311 — CVSS 5.0 (medium): PowerDNS (aka pdns) Authoritative Server 3.4.4 before 3.4.7 allows remote attackers to cause a denial of service (assertion failure and…
CVE-2020-17482 — CVSS 4.3 (medium): An issue has been found in PowerDNS Authoritative Server before 4.3.1 where an authorized user with the ability to insert crafted records…
CVE-2019-10163 — CVSS 4.3 (medium): A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master server to…