Approved changes feed: RSS · Atom

cpe:2.3:a:powerdns:pdns:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorPowerdns (ef825119-8390-5906-a637-f6692acc90eb)
ProductPdns (c97f529b-1d7b-597d-a4bc-8cfa7ea3e941)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:deb/debian/pdns purl2cpe 2026-06-01 10:12:48.997563
pkg:deb/ubuntu/pdns purl2cpe 2026-06-01 10:12:48.997566
pkg:github/powerdns/pdns purl2cpe 2026-06-01 10:12:48.997569
pkg:rpm/fedora/pdns purl2cpe 2026-06-01 10:12:48.997572
pkg:rpm/opensuse/pdns purl2cpe 2026-06-01 10:12:48.997575

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-10163 vulnerable 2026-06-08 05:12:22.381273 Details available
LOW (3.5)
A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master server to cause a high CPU load or even prevent any further updates to any slave zone by sending a large number of NOTIFY messages. Note that only servers configured as slaves are affected by this issue.
Published: 2019-07-30T22:16:59.000Z
Updated: 2024-08-04T22:10:10.003Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-10162 vulnerable 2026-06-08 05:12:22.378739 Details available
LOW (3.5)
A vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.10, 4.0.8 allowing an authorized user to cause the server to exit by inserting a crafted record in a MASTER type zone under their control. The issue is due to the fact that the Authoritative Server will exit when it runs into a parsing error while looking up the NS/A/AAAA records it is about to use for an outgoing notify.
Published: 2019-07-30T22:15:35.000Z
Updated: 2024-08-04T22:10:10.028Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-1046 vulnerable 2026-06-08 05:11:16.724418 Details available
HIGH (7)
pdns before version 4.1.2 is vulnerable to a buffer overflow in dnsreplay. In the dnsreplay tool provided with PowerDNS Authoritative, replaying a specially crafted PCAP file can trigger a stack-based buffer overflow, leading to a crash and potentially arbitrary code execution. This buffer overflow only occurs when the -ecs-stamp option of dnsreplay is used.
Published: 2018-07-16T20:00:00.000Z
Updated: 2024-08-05T03:44:11.842Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.