Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2022/05/20 11:27 p.m.22 views

CVE-2017-15093

When api-config-dir is set to a non-empty value, which is not the case by default, the API in PowerDNS Recursor 4.x up to and including 4.0.6 and 3.x up to and including 3.7.4 allows an authorized user to update the Recursor's ACL by adding and removing netmasks, and to configure forward zones. I...

6.1CVSS3.3AI score0.03302EPSS
Exploits0References1
NVD
NVD
added 2018/01/23 3:29 p.m.20 views

CVE-2017-15093

When api-config-dir is set to a non-empty value, which is not the case by default, the API in PowerDNS Recursor 4.x up to and including 4.0.6 and 3.x up to and including 3.7.4 allows an authorized user to update the Recursor's ACL by adding and removing netmasks, and to configure forward zones. I...

5.3CVSS5.1AI score0.00828EPSS
Exploits0References2
OSV
OSV
added 2018/01/23 3:29 p.m.24 views

CVE-2017-15093

When api-config-dir is set to a non-empty value, which is not the case by default, the API in PowerDNS Recursor 4.x up to and including 4.0.6 and 3.x up to and including 3.7.4 allows an authorized user to update the Recursor's ACL by adding and removing netmasks, and to configure forward zones. I...

5.3CVSS5.5AI score
Exploits0References2
CVE
CVE
added 2018/01/23 3:0 p.m.107 views

CVE-2017-15093

CVE-2017-15093 affects PowerDNS Recursor (4.x up to 4.0.6 and 3.x up to 3.7.4). An authenticated user can modify the Recursor’s ACL by adding/removing netmasks and configure forward zones when api-config-dir is non-empty. The root cause is insufficient validation of the new netmask and IP address...

5.3CVSS5.6AI score0.00828EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2018/01/23 3:0 p.m.27 views

CVE-2017-15093

When api-config-dir is set to a non-empty value, which is not the case by default, the API in PowerDNS Recursor 4.x up to and including 4.0.6 and 3.x up to and including 3.7.4 allows an authorized user to update the Recursor's ACL by adding and removing netmasks, and to configure forward zones. I...

5.3CVSS5.9AI score0.00828EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/01/19 12:0 a.m.47 views

PowerDNS Recursor < 4.0.7 API Configuration Injection Vulnerability (CVE-2017-15093)

According to its self-reported version number, the version of the PowerDNS Recursor listening on the remote host is prior to to 4.0.7. It is, therefore, affected by a vulnerability where a remote authenticated user can injection additional configuration directives via the API. Note that Nessus ha...

5.3CVSS6.6AI score0.00828EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.31 views

Fedora 27 : pdns-recursor (2017-608b6f5945)

Update to latest version. Contains security fixes for CVE-2017-15090, CVE-2017-15092, CVE-2017-15093 and CVE-2017-15094 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

6.1CVSS6.3AI score0.03302EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2017/12/14 12:0 a.m.24 views

Fedora Update for pdns-recursor FEDORA-2017-81fe39ad9f

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS5.8AI score0.03302EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/12/14 12:0 a.m.20 views

Fedora Update for pdns-recursor FEDORA-2017-1585789772

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS5.8AI score0.03302EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/12/13 12:0 a.m.35 views

Fedora 26 : pdns-recursor (2017-1585789772)

Update to latest version. Contains security fixes for CVE-2017-15090, CVE-2017-15092, CVE-2017-15093 and CVE-2017-15094 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

6.1CVSS6.3AI score0.03302EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2017/12/13 12:0 a.m.46 views

Fedora 25 : pdns-recursor (2017-81fe39ad9f)

Update to latest version. Contains security fixes for CVE-2017-15090, CVE-2017-15092, CVE-2017-15093 and CVE-2017-15094 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

6.1CVSS6.3AI score0.03302EPSS
Exploits0References5
ArchLinux
ArchLinux
added 2017/11/27 12:0 a.m.24 views

[ASA-201711-31] powerdns-recursor: multiple issues

Arch Linux Security Advisory ASA-201711-31 ========================================== Severity: Medium Date : 2017-11-27 CVE-ID : CVE-2017-15090 CVE-2017-15092 CVE-2017-15093 CVE-2017-15094 Package : powerdns-recursor Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-5...

6.1CVSS2.1AI score0.03302EPSS
Exploits0References14
Rows per page
Query Builder