CVE-2026-47693

CVE-2026-47693 details (Poweradmin) : Poweradmin, a web-based DNS admin tool for PowerDNS, is vulnerable to CSV Injection in its log export endpoints. User-supplied data (notably the username) is written to exported CSVs without sanitizing formula trigger characters (=, +, -, @). When an admin ex...

CVE-2026-47693

Poweradmin is a web-based DNS administration tool for PowerDNS server. Versions prior to 4.2.4 and 4.3.3 are vulnerable to CSV Injection Formula Injection in its log export functionality. User-controlled data — specifically the username field — is written to exported CSV files without sanitizing...

CVE-2026-42001

A flaw was found in PowerDNS Authoritative Server pdns. This vulnerability arises from insufficient validation of Autoprimary SOA Start of Authority queries. A remote attacker can exploit this flaw to trigger a Denial of Service DoS, making the server unresponsive and unavailable to legitimate...

CVE-2026-42396

A flaw was found in pdns. Insufficient validation of member zone data can allow a privileged attacker to cause a catalog zone transfer to fail. This can lead to a denial of service DoS for affected DNS services, preventing legitimate users from resolving domain names...

[SECURITY] Fedora 43 Update: pdns-5.0.5-1.fc43

The PowerDNS Nameserver is a modern, advanced and high performance authoritative-only name server. It is written from scratch and conforms to all relevant DNS standards documents. Furthermore, PowerDNS interfaces with almost any database...

[SECURITY] Fedora 44 Update: pdns-5.0.5-1.fc44

The PowerDNS Nameserver is a modern, advanced and high performance authoritative-only name server. It is written from scratch and conforms to all relevant DNS standards documents. Furthermore, PowerDNS interfaces with almost any database...

Fedora 43 : pdns (2026-6458693037)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-6458693037 advisory. - Update to 5.0.5 - Fix for CVE-2026-42000, CVE-2026-42001, CVE-2026-42002, CVE-2026-41999, CVE-2026-42396 Security Advisory:...

PowerDNS Authoritative 代码注入漏洞

PowerDNS Authoritative is a DNS server software developed by PowerDNS Corporation. PowerDNS Authoritative has a code injection vulnerability, which stems from insufficient validation of member zone data, potentially leading to failed zone transfer operations...

PowerDNS Authoritative 安全漏洞

PowerDNS Authoritative is a DNS server software developed by PowerDNS Corporation. PowerDNS Authoritative has security vulnerabilities, which stem from concurrency and locking flaws in GSS-TSIG...

PowerDNS Authoritative 命令注入漏洞

PowerDNS Authoritative is a DNS server software developed by PowerDNS Corporation. PowerDNS Authoritative has a command injection vulnerability, which stems from insufficient name validation during the AXFR process...

PowerDNS Authoritative 访问控制错误漏洞

PowerDNS Authoritative is a DNS server software developed by PowerDNS Corporation. PowerDNS Authoritative has a vulnerability related to access control, which stems from incorrect behavior in the view of TCP PROXY requests...

[SECURITY] [DSA 6284-1] pdns security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6284-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 20, 2026 https://www.debian.org/security/faq -...

Fedora 42 : pdns (2026-edc32576bb)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-edc32576bb advisory. - Update to 5.0.4 Release notes: https://doc.powerdns.com/authoritative/changelog/5.0.htmlchange-5.0.4 Security advisory:...

Fedora 43 : pdns (2026-b47d3e7e16)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-b47d3e7e16 advisory. - Update to 5.0.4 Release notes: https://doc.powerdns.com/authoritative/changelog/5.0.htmlchange-5.0.4 Security advisory:...

[SECURITY] Fedora 43 Update: pdns-5.0.4-1.fc43

The PowerDNS Nameserver is a modern, advanced and high performance authoritative-only name server. It is written from scratch and conforms to all relevant DNS standards documents. Furthermore, PowerDNS interfaces with almost any database...

[SECURITY] Fedora 42 Update: pdns-5.0.4-1.fc42

The PowerDNS Nameserver is a modern, advanced and high performance authoritative-only name server. It is written from scratch and conforms to all relevant DNS standards documents. Furthermore, PowerDNS interfaces with almost any database...

[SECURITY] Fedora 44 Update: pdns-5.0.4-1.fc44

The PowerDNS Nameserver is a modern, advanced and high performance authoritative-only name server. It is written from scratch and conforms to all relevant DNS standards documents. Furthermore, PowerDNS interfaces with almost any database...

Fedora 44 : pdns (2026-f416c4ba87)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-f416c4ba87 advisory. - Update to 5.0.4 Release notes: https://doc.powerdns.com/authoritative/changelog/5.0.htmlchange-5.0.4 Security advisory:...

CVE-2026-33609

A flaw was found in PowerDNS. When running with 8bit-dns enabled, incomplete escaping of Lightweight Directory Access Protocol LDAP queries allows authenticated users to perform queries of internal domain subtrees. This vulnerability can lead to information disclosure, potentially exposing...

CVE-2026-33610

A flaw was found in PowerDNS. A remote attacker, operating as a rogue primary server, can exploit this vulnerability by sending a malicious DNS update request to a PowerDNS secondary server. This can lead to the exhaustion of file descriptors on the secondary server. Consequently, the PowerDNS...