Approved changes feed: RSS · Atom

cpe:2.3:a:powerdns:recursor:4.8.0:*:*:*:*:*:*:*

part: a version: 4.8.0 update: *

VendorPowerdns (ef825119-8390-5906-a637-f6692acc90eb)
ProductRecursor (747fb593-573c-5107-91c6-5adf2a41b0ef)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:deb/debian/pdns-recursor purl2cpe 2026-06-01 10:12:49.049592
pkg:deb/ubuntu/pdns-recursor purl2cpe 2026-06-01 10:12:49.049594
pkg:github/powerdns/pdns purl2cpe 2026-06-01 10:12:49.049595
pkg:rpm/fedora/pdns-recursor purl2cpe 2026-06-01 10:12:49.049597
pkg:rpm/opensuse/pdns-recursor purl2cpe 2026-06-01 10:12:49.049598

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-22617 vulnerable 2026-06-08 05:54:26.619040 Details available
A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1.
Published: 2023-01-21T00:00:00.000Z
Updated: 2025-04-03T14:38:29.405Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.