Описание
In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.
In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2020-14196
- https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-04.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7TUNCUZNASYSTVD35QGFAI6XO2BFMQ2F
- https://www.openwall.com/lists/oss-security/2020/07/01/1
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00043.html
- http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00042.html
- http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00044.html
- http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00036.html
EPSS
Процентиль: 6%
0.00025
Низкий
CVE ID
Связанные уязвимости
CVSS3: 5.3
ubuntu
больше 5 лет назад
In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.
CVSS3: 5.3
nvd
больше 5 лет назад
In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.
CVSS3: 5.3
debian
больше 5 лет назад
In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1 ...
EPSS
Процентиль: 6%
0.00025
Низкий