Lucene search
Veracode Vulnerability DatabaseVERACODE:26098HistoryAug 06, 2020 - 9:30 p.m.
Privilege Escalation
2020-08-0621:30:20
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.006 Low
EPSS
Percentile
79.3%
pdns-recursor is vulnerable to privilege escalation. The vulnerability exists as pdns-recursor does not properly restrict ACL access to the internal web server.
| CPE | Name | Operator | Version |
|---|---|---|---|
| pdns-recursor:3.12 | eq | 4.3.1-r0 | |
| pdns-recursor:edge | eq | 4.2.1-r0 | |
| pdns-recursor:edge | eq | 4.3.1-r0 |
References
lists.opensuse.org/opensuse-security-announce/2020-07/msg00043.html
lists.opensuse.org/opensuse-security-announce/2020-09/msg00042.html
lists.opensuse.org/opensuse-security-announce/2020-09/msg00044.html
lists.opensuse.org/opensuse-security-announce/2020-10/msg00036.html
doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-04.html
lists.fedoraproject.org/archives/list/[email protected]/message/7TUNCUZNASYSTVD35QGFAI6XO2BFMQ2F/
www.openwall.com/lists/oss-security/2020/07/01/1
Related
openvas
openvas
openSUSE: Security Advisory for pdns-recursor (openSUSE-SU-2020:1005-1)
2020-07-20 00:00:00
Mageia: Security Advisory (MGASA-2020-0286)
2022-01-28 00:00:00
Fedora: Security Advisory for pdns-recursor (FEDORA-2020-1d812d5546)
2020-09-26 00:00:00
nessus
nessus
openSUSE Security Update : pdns-recursor (openSUSE-2020-1005)
2020-07-20 00:00:00
FreeBSD : powerdns-recursor -- access restriction bypass (641cd669-bc37-11ea-babf-6805ca2fa271)
2020-07-06 00:00:00
openSUSE Security Update : pdns-recursor (openSUSE-2020-1687)
2020-10-19 00:00:00
prion
prion
Code injection
2020-07-01 18:15:00
alpinelinux
alpinelinux
CVE-2020-14196
2020-07-01 18:15:10
fedora
fedora
[SECURITY] Fedora 33 Update: pdns-recursor-4.3.4-1.fc33
2020-09-25 17:17:12
mageia
mageia
Updated pdns-recursor packages fix security vulnerability
2020-07-07 16:47:37
suse
suse
Security update for pdns-recursor (moderate)
2020-09-18 00:00:00
Security update for pdns-recursor (moderate)
2020-07-19 00:00:00
Security update for pdns-recursor (moderate)
2020-09-18 00:00:00
ubuntucve
ubuntucve
CVE-2020-14196
2020-07-01 00:00:00
nvd
nvd
CVE-2020-14196
2020-07-01 18:15:10
cvelist
cvelist
CVE-2020-14196
2020-07-01 17:03:04
cve
cve
CVE-2020-14196
2020-07-01 18:15:10
osv
osv
CVE-2020-14196
2020-07-01 18:15:10
pdns-recursor - security update
2024-07-01 00:00:00
freebsd
freebsd
powerdns-recursor -- access restriction bypass
2020-07-01 00:00:00
debiancve
debiancve
CVE-2020-14196
2020-07-01 18:15:10
debian
debian
[SECURITY] [DLA 3855-1] pdns-recursor security update
2024-07-01 01:24:15