Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-59qw-42jc-ww5f

Опубликовано: 21 янв. 2023
Источник: github
Github: Не прошло ревью
CVSS3: 7.5

Описание

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1.

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1.

Ссылки

EPSS

Процентиль: 77%
0.01064
Низкий

7.5 High

CVSS3

CVE ID

CVE-2023-22617

Дефекты

CWE-674

Связанные уязвимости

ubuntu логотип

CVE-2023-22617

CVSS3: 7.5
ubuntu
около 3 лет назад

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1.

nvd логотип

CVE-2023-22617

CVSS3: 7.5
nvd
около 3 лет назад

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1.

debian логотип

CVE-2023-22617

CVSS3: 7.5
debian
около 3 лет назад

A remote attacker might be able to cause infinite recursion in PowerDN ...

EPSS

Процентиль: 77%
0.01064
Низкий

7.5 High

CVSS3

CVE ID

CVE-2023-22617

Дефекты

CWE-674