Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/pdns-recursor@4.4.2-3

Type deb

Namespace debian

Name pdns-recursor

Version 4.4.2-3

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 5.2.8-0+deb13u1

Latest_non_vulnerable_version 5.2.8-0+deb13u1

Affected_by_vulnerabilities

url VCID-2ugc-uygs-hqb8

vulnerability_id VCID-2ugc-uygs-hqb8

summary Crafted delegations or IP fragments can poison cached delegations in Recursor.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-59024

reference_id

reference_type

scores

value	5e-05
scoring_system	epss
scoring_elements	0.00205
published_at	2026-04-16T12:55:00Z

value	5e-05
scoring_system	epss
scoring_elements	0.00203
published_at	2026-04-13T12:55:00Z

value	5e-05
scoring_system	epss
scoring_elements	0.00236
published_at	2026-04-18T12:55:00Z

value	5e-05
scoring_system	epss
scoring_elements	0.00204
published_at	2026-04-11T12:55:00Z

value	5e-05
scoring_system	epss
scoring_elements	0.00202
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-59024

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59024
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59024

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118751
reference_id	1118751
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118751

reference_url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-06.html

reference_id

powerdns-advisory-2025-06.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-09T16:11:42Z/

url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-06.html

fixed_packages

url	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
purl	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@5.2.8-0%252Bdeb13u1

aliases CVE-2025-59024

risk_score 1.6

exploitability 0.5

weighted_severity 3.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2ugc-uygs-hqb8

url VCID-66sa-bc5p-jqde

vulnerability_id VCID-66sa-bc5p-jqde

summary Multiple vulnerabilities have been discovered in Dnsmasq, the worst of which could lead to a denial of service.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-50387.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-50387.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-50387

reference_id

reference_type

scores

value	0.51989
scoring_system	epss
scoring_elements	0.97914
published_at	2026-04-13T12:55:00Z

value	0.51989
scoring_system	epss
scoring_elements	0.97913
published_at	2026-04-12T12:55:00Z

value	0.51989
scoring_system	epss
scoring_elements	0.97912
published_at	2026-04-11T12:55:00Z

value	0.51989
scoring_system	epss
scoring_elements	0.97898
published_at	2026-04-04T12:55:00Z

value	0.51989
scoring_system	epss
scoring_elements	0.97901
published_at	2026-04-07T12:55:00Z

value	0.51989
scoring_system	epss
scoring_elements	0.97906
published_at	2026-04-08T12:55:00Z

value	0.51989
scoring_system	epss
scoring_elements	0.97909
published_at	2026-04-09T12:55:00Z

value	0.51989
scoring_system	epss
scoring_elements	0.97896
published_at	2026-04-02T12:55:00Z

value	0.51989
scoring_system	epss
scoring_elements	0.97922
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-50387

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4408
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4408

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50387
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50387

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50868
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50868

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5517
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5517

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5679
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5679

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html

reference_id

017430.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063845
reference_id	1063845
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063845

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063852
reference_id	1063852
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063852

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1077750
reference_id	1077750
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1077750

reference_url

http://www.openwall.com/lists/oss-security/2024/02/16/2

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

http://www.openwall.com/lists/oss-security/2024/02/16/2

reference_url

https://www.isc.org/blogs/2024-bind-security-release/

reference_id

2024-bind-security-release

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://www.isc.org/blogs/2024-bind-security-release/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2263914
reference_id	2263914
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2263914

reference_url

http://www.openwall.com/lists/oss-security/2024/02/16/3

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

http://www.openwall.com/lists/oss-security/2024/02/16/3

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ/

reference_id

6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/

reference_id

BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/

reference_url

https://kb.isc.org/docs/cve-2023-50387

reference_id

cve-2023-50387

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://kb.isc.org/docs/cve-2023-50387

reference_url

https://access.redhat.com/security/cve/CVE-2023-50387

reference_id

CVE-2023-50387

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://access.redhat.com/security/cve/CVE-2023-50387

reference_url

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-50387

reference_id

CVE-2023-50387

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-50387

reference_url

https://www.theregister.com/2024/02/13/dnssec_vulnerability_internet/

reference_id

dnssec_vulnerability_internet

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://www.theregister.com/2024/02/13/dnssec_vulnerability_internet/

reference_url	https://security.gentoo.org/glsa/202412-10
reference_id	GLSA-202412-10
reference_type
scores
url	https://security.gentoo.org/glsa/202412-10

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/

reference_id

HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6/

reference_id

IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6/

reference_url

https://news.ycombinator.com/item?id=39367411

reference_id

item?id=39367411

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://news.ycombinator.com/item?id=39367411

reference_url

https://news.ycombinator.com/item?id=39372384

reference_id

item?id=39372384

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://news.ycombinator.com/item?id=39372384

reference_url

https://www.athene-center.de/aktuelles/key-trap

reference_id

key-trap

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://www.athene-center.de/aktuelles/key-trap

reference_url

https://www.securityweek.com/keytrap-dns-attack-could-disable-large-parts-of-internet-researchers/

reference_id

keytrap-dns-attack-could-disable-large-parts-of-internet-researchers

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://www.securityweek.com/keytrap-dns-attack-could-disable-large-parts-of-internet-researchers/

reference_url

https://lists.debian.org/debian-lts-announce/2024/02/msg00006.html

reference_id

msg00006.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.debian.org/debian-lts-announce/2024/02/msg00006.html

reference_url

https://lists.debian.org/debian-lts-announce/2024/05/msg00011.html

reference_id

msg00011.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.debian.org/debian-lts-announce/2024/05/msg00011.html

reference_url

https://security.netapp.com/advisory/ntap-20240307-0007/

reference_id

ntap-20240307-0007

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://security.netapp.com/advisory/ntap-20240307-0007/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/

reference_id

PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/

reference_url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html

reference_id

powerdns-advisory-2024-01.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/

reference_id

RGS7JN6FZXUSTC2XKQHH27574XOULYYJ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/

reference_url	https://access.redhat.com/errata/RHSA-2024:0965
reference_id	RHSA-2024:0965
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0965

reference_url	https://access.redhat.com/errata/RHSA-2024:0977
reference_id	RHSA-2024:0977
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0977

reference_url	https://access.redhat.com/errata/RHSA-2024:0981
reference_id	RHSA-2024:0981
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0981

reference_url	https://access.redhat.com/errata/RHSA-2024:0982
reference_id	RHSA-2024:0982
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0982

reference_url	https://access.redhat.com/errata/RHSA-2024:11003
reference_id	RHSA-2024:11003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11003

reference_url	https://access.redhat.com/errata/RHSA-2024:1334
reference_id	RHSA-2024:1334
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1334

reference_url	https://access.redhat.com/errata/RHSA-2024:1335
reference_id	RHSA-2024:1335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1335

reference_url	https://access.redhat.com/errata/RHSA-2024:1522
reference_id	RHSA-2024:1522
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1522

reference_url	https://access.redhat.com/errata/RHSA-2024:1543
reference_id	RHSA-2024:1543
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1543

reference_url	https://access.redhat.com/errata/RHSA-2024:1544
reference_id	RHSA-2024:1544
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1544

reference_url	https://access.redhat.com/errata/RHSA-2024:1545
reference_id	RHSA-2024:1545
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1545

reference_url	https://access.redhat.com/errata/RHSA-2024:1647
reference_id	RHSA-2024:1647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1647

reference_url	https://access.redhat.com/errata/RHSA-2024:1648
reference_id	RHSA-2024:1648
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1648

reference_url	https://access.redhat.com/errata/RHSA-2024:1781
reference_id	RHSA-2024:1781
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1781

reference_url	https://access.redhat.com/errata/RHSA-2024:1782
reference_id	RHSA-2024:1782
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1782

reference_url	https://access.redhat.com/errata/RHSA-2024:1789
reference_id	RHSA-2024:1789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1789

reference_url	https://access.redhat.com/errata/RHSA-2024:1800
reference_id	RHSA-2024:1800
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1800

reference_url	https://access.redhat.com/errata/RHSA-2024:1801
reference_id	RHSA-2024:1801
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1801

reference_url	https://access.redhat.com/errata/RHSA-2024:1803
reference_id	RHSA-2024:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1803

reference_url	https://access.redhat.com/errata/RHSA-2024:1804
reference_id	RHSA-2024:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1804

reference_url	https://access.redhat.com/errata/RHSA-2024:2551
reference_id	RHSA-2024:2551
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2551

reference_url	https://access.redhat.com/errata/RHSA-2024:2587
reference_id	RHSA-2024:2587
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2587

reference_url	https://access.redhat.com/errata/RHSA-2024:2696
reference_id	RHSA-2024:2696
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2696

reference_url	https://access.redhat.com/errata/RHSA-2024:2720
reference_id	RHSA-2024:2720
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2720

reference_url	https://access.redhat.com/errata/RHSA-2024:2721
reference_id	RHSA-2024:2721
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2721

reference_url	https://access.redhat.com/errata/RHSA-2024:2821
reference_id	RHSA-2024:2821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2821

reference_url	https://access.redhat.com/errata/RHSA-2024:2890
reference_id	RHSA-2024:2890
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2890

reference_url	https://access.redhat.com/errata/RHSA-2024:3271
reference_id	RHSA-2024:3271
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3271

reference_url	https://access.redhat.com/errata/RHSA-2024:3741
reference_id	RHSA-2024:3741
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3741

reference_url	https://access.redhat.com/errata/RHSA-2024:3877
reference_id	RHSA-2024:3877
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3877

reference_url	https://access.redhat.com/errata/RHSA-2024:3929
reference_id	RHSA-2024:3929
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3929

reference_url	https://access.redhat.com/errata/RHSA-2025:0039
reference_id	RHSA-2025:0039
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0039

reference_url

https://bugzilla.suse.com/show_bug.cgi?id=1219823

reference_id

show_bug.cgi?id=1219823

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://bugzilla.suse.com/show_bug.cgi?id=1219823

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/

reference_id

SVYA42BLXUCIDLD35YIJPJSHDIADNYMP

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/

reference_url

https://www.athene-center.de/fileadmin/content/PDF/Technical_Report_KeyTrap.pdf

reference_id

Technical_Report_KeyTrap.pdf

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://www.athene-center.de/fileadmin/content/PDF/Technical_Report_KeyTrap.pdf

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG/

reference_id

TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG/

reference_url

https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/

reference_id

unbound-1.19.1-released

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7/

reference_id

UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7/

reference_url	https://usn.ubuntu.com/6633-1/
reference_id	USN-6633-1
reference_type
scores
url	https://usn.ubuntu.com/6633-1/

reference_url	https://usn.ubuntu.com/6642-1/
reference_id	USN-6642-1
reference_type
scores
url	https://usn.ubuntu.com/6642-1/

reference_url	https://usn.ubuntu.com/6657-1/
reference_id	USN-6657-1
reference_type
scores
url	https://usn.ubuntu.com/6657-1/

reference_url	https://usn.ubuntu.com/6657-2/
reference_id	USN-6657-2
reference_type
scores
url	https://usn.ubuntu.com/6657-2/

reference_url	https://usn.ubuntu.com/6665-1/
reference_id	USN-6665-1
reference_type
scores
url	https://usn.ubuntu.com/6665-1/

reference_url	https://usn.ubuntu.com/6723-1/
reference_id	USN-6723-1
reference_type
scores
url	https://usn.ubuntu.com/6723-1/

reference_url

https://gitlab.nic.cz/knot/knot-resolver/-/releases/v5.7.1

reference_id

v5.7.1

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://gitlab.nic.cz/knot/knot-resolver/-/releases/v5.7.1

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/

reference_id

ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:29Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/

fixed_packages

url pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

purl pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ugc-uygs-hqb8

vulnerability	VCID-cdzz-8tc8-jucu

vulnerability	VCID-m445-c6a1-uugf

vulnerability	VCID-pjbp-1jgm-s3cg

vulnerability	VCID-umcq-ztbz-qfb2

vulnerability	VCID-wywf-pmyt-zud4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.8.8-1%252Bdeb12u1

aliases CVE-2023-50387

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-66sa-bc5p-jqde

url VCID-7dc3-qdk8-k7b2

vulnerability_id VCID-7dc3-qdk8-k7b2

summary In PowerDNS Authoritative Server before 4.4.3, 4.5.x before 4.5.4, and 4.6.x before 4.6.1 and PowerDNS Recursor before 4.4.8, 4.5.x before 4.5.8, and 4.6.x before 4.6.1, insufficient validation of an IXFR end condition causes incomplete zone transfers to be handled as successful transfers.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-27227

reference_id

reference_type

scores

value	0.00027
scoring_system	epss
scoring_elements	0.07393
published_at	2026-04-18T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.0751
published_at	2026-04-11T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07496
published_at	2026-04-12T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07484
published_at	2026-04-13T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07406
published_at	2026-04-16T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07449
published_at	2026-04-04T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.0743
published_at	2026-04-07T12:55:00Z

value	0.00027
scoring_system	epss
scoring_elements	0.07487
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-27227

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27227
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27227

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://security.archlinux.org/AVG-2655

reference_id

AVG-2655

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2655

reference_url

https://security.archlinux.org/AVG-2656

reference_id

AVG-2656

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2656

reference_url	https://usn.ubuntu.com/7203-1/
reference_id	USN-7203-1
reference_type
scores
url	https://usn.ubuntu.com/7203-1/

fixed_packages

url pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

purl pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ugc-uygs-hqb8

vulnerability	VCID-cdzz-8tc8-jucu

vulnerability	VCID-m445-c6a1-uugf

vulnerability	VCID-pjbp-1jgm-s3cg

vulnerability	VCID-umcq-ztbz-qfb2

vulnerability	VCID-wywf-pmyt-zud4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.8.8-1%252Bdeb12u1

aliases CVE-2022-27227

risk_score 1.9

exploitability 0.5

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7dc3-qdk8-k7b2

url VCID-8tar-s444-zfac

vulnerability_id VCID-8tar-s444-zfac

summary PowerDNS Recursor up to and including 4.5.9, 4.6.2 and 4.7.1, when protobuf logging is enabled, has Improper Cleanup upon a Thrown Exception, leading to a denial of service (daemon crash) via a DNS query that leads to an answer with specific properties.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-37428

reference_id

reference_type

scores

value	0.00053
scoring_system	epss
scoring_elements	0.16676
published_at	2026-04-18T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16879
published_at	2026-04-02T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16935
published_at	2026-04-04T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16718
published_at	2026-04-07T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16803
published_at	2026-04-08T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16858
published_at	2026-04-09T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16836
published_at	2026-04-11T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16791
published_at	2026-04-12T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16732
published_at	2026-04-13T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16668
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-37428

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37428
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37428

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

fixed_packages

url pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

purl pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ugc-uygs-hqb8

vulnerability	VCID-cdzz-8tc8-jucu

vulnerability	VCID-m445-c6a1-uugf

vulnerability	VCID-pjbp-1jgm-s3cg

vulnerability	VCID-umcq-ztbz-qfb2

vulnerability	VCID-wywf-pmyt-zud4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.8.8-1%252Bdeb12u1

aliases CVE-2022-37428

risk_score 1.6

exploitability 0.5

weighted_severity 3.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8tar-s444-zfac

url VCID-cdzz-8tc8-jucu

vulnerability_id VCID-cdzz-8tc8-jucu

summary Crafted delegations or IP fragments can poison cached delegations in Recursor.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-59023

reference_id

reference_type

scores

value	6e-05
scoring_system	epss
scoring_elements	0.00365
published_at	2026-04-02T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00347
published_at	2026-04-12T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00345
published_at	2026-04-13T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.0034
published_at	2026-04-16T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00368
published_at	2026-04-04T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00356
published_at	2026-04-07T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00353
published_at	2026-04-09T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.0035
published_at	2026-04-11T12:55:00Z

value	7e-05
scoring_system	epss
scoring_elements	0.00428
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-59023

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59023
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59023

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118751
reference_id	1118751
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118751

reference_url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-06.html

reference_id

powerdns-advisory-2025-06.html

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-09T16:17:14Z/

url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-06.html

fixed_packages

url	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
purl	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@5.2.8-0%252Bdeb13u1

aliases CVE-2025-59023

risk_score 2.0

exploitability 0.5

weighted_severity 4.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cdzz-8tc8-jucu

url VCID-m445-c6a1-uugf

vulnerability_id VCID-m445-c6a1-uugf

summary Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-0398

reference_id

reference_type

scores

value	5e-05
scoring_system	epss
scoring_elements	0.00244
published_at	2026-04-18T12:55:00Z

value	5e-05
scoring_system	epss
scoring_elements	0.00207
published_at	2026-04-11T12:55:00Z

value	5e-05
scoring_system	epss
scoring_elements	0.00208
published_at	2026-04-02T12:55:00Z

value	5e-05
scoring_system	epss
scoring_elements	0.00209
published_at	2026-04-16T12:55:00Z

value	5e-05
scoring_system	epss
scoring_elements	0.00206
published_at	2026-04-13T12:55:00Z

value	5e-05
scoring_system	epss
scoring_elements	0.00205
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-0398

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0398
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0398

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127490
reference_id	1127490
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127490

reference_url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2026-01.html

reference_id

powerdns-advisory-2026-01.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-09T15:36:48Z/

url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2026-01.html

fixed_packages

url	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
purl	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@5.2.8-0%252Bdeb13u1

aliases CVE-2026-0398

risk_score 1.3

exploitability 0.5

weighted_severity 2.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m445-c6a1-uugf

url VCID-mkcs-362g-t7aq

vulnerability_id VCID-mkcs-362g-t7aq

summary Denial of service vulnerability in PowerDNS Recursor allows authoritative servers to be marked unavailable.This issue affects Recursor: through 4.6.5, through 4.7.4 , through 4.8.3.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-26437

reference_id

reference_type

scores

value	9e-05
scoring_system	epss
scoring_elements	0.0082
published_at	2026-04-16T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00835
published_at	2026-04-07T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00839
published_at	2026-04-08T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00836
published_at	2026-04-09T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00824
published_at	2026-04-18T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00819
published_at	2026-04-12T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00834
published_at	2026-04-02T12:55:00Z

value	9e-05
scoring_system	epss
scoring_elements	0.00833
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-26437

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26437
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26437

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033941
reference_id	1033941
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033941

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CN7VMRYKZHG2UDUAK326LXD3JY7NO3LR/

reference_id

CN7VMRYKZHG2UDUAK326LXD3JY7NO3LR

reference_type

scores

value	3.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-13T16:31:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CN7VMRYKZHG2UDUAK326LXD3JY7NO3LR/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IHPD6SIQOG7245GXFQHPUEI4AZ6Y3KD6/

reference_id

IHPD6SIQOG7245GXFQHPUEI4AZ6Y3KD6

reference_type

scores

value	3.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-13T16:31:03Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IHPD6SIQOG7245GXFQHPUEI4AZ6Y3KD6/

reference_url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2023-02.html

reference_id

powerdns-advisory-2023-02.html

reference_type

scores

value	3.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-13T16:31:03Z/

url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2023-02.html

fixed_packages

url pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

purl pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ugc-uygs-hqb8

vulnerability	VCID-cdzz-8tc8-jucu

vulnerability	VCID-m445-c6a1-uugf

vulnerability	VCID-pjbp-1jgm-s3cg

vulnerability	VCID-umcq-ztbz-qfb2

vulnerability	VCID-wywf-pmyt-zud4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.8.8-1%252Bdeb12u1

aliases CVE-2023-26437

risk_score 1.6

exploitability 0.5

weighted_severity 3.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mkcs-362g-t7aq

url VCID-pjbp-1jgm-s3cg

vulnerability_id VCID-pjbp-1jgm-s3cg

summary Crafted zones can lead to increased incoming network traffic.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-24027

reference_id

reference_type

scores

value	6e-05
scoring_system	epss
scoring_elements	0.00402
published_at	2026-04-18T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00318
published_at	2026-04-16T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00339
published_at	2026-04-02T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00337
published_at	2026-04-04T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00329
published_at	2026-04-07T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00326
published_at	2026-04-08T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00327
published_at	2026-04-09T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00325
published_at	2026-04-11T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00324
published_at	2026-04-12T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00323
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-24027

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-24027
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-24027

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127490
reference_id	1127490
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127490

reference_url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2026-01.html

reference_id

powerdns-advisory-2026-01.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-09T16:19:10Z/

url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2026-01.html

fixed_packages

url	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
purl	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@5.2.8-0%252Bdeb13u1

aliases CVE-2026-24027

risk_score 1.3

exploitability 0.5

weighted_severity 2.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pjbp-1jgm-s3cg

url VCID-umcq-ztbz-qfb2

vulnerability_id VCID-umcq-ztbz-qfb2

summary An attacker can trigger the removal of cached records by sending a NOTIFY query over TCP.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-59030

reference_id

reference_type

scores

value	0.00063
scoring_system	epss
scoring_elements	0.19416
published_at	2026-04-16T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19454
published_at	2026-04-13T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19424
published_at	2026-04-18T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19561
published_at	2026-04-11T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19513
published_at	2026-04-12T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24659
published_at	2026-04-08T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24777
published_at	2026-04-02T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24816
published_at	2026-04-04T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.2459
published_at	2026-04-07T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24706
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-59030

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59030
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59030

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1122197
reference_id	1122197
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1122197

reference_url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-08.html

reference_id

powerdns-advisory-2025-08.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-09T14:30:11Z/

url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-08.html

fixed_packages

url	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
purl	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@5.2.8-0%252Bdeb13u1

aliases CVE-2025-59030

risk_score 1.9

exploitability 0.5

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-umcq-ztbz-qfb2

url VCID-vprj-j7u6-zbe7

vulnerability_id VCID-vprj-j7u6-zbe7

summary Multiple vulnerabilities have been discovered in Dnsmasq, the worst of which could lead to a denial of service.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-50868.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-50868.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-50868

reference_id

reference_type

scores

value	0.11802
scoring_system	epss
scoring_elements	0.93737
published_at	2026-04-18T12:55:00Z

value	0.11802
scoring_system	epss
scoring_elements	0.9373
published_at	2026-04-16T12:55:00Z

value	0.11802
scoring_system	epss
scoring_elements	0.93706
published_at	2026-04-08T12:55:00Z

value	0.11802
scoring_system	epss
scoring_elements	0.93684
published_at	2026-04-02T12:55:00Z

value	0.11802
scoring_system	epss
scoring_elements	0.93713
published_at	2026-04-13T12:55:00Z

value	0.11802
scoring_system	epss
scoring_elements	0.93712
published_at	2026-04-12T12:55:00Z

value	0.11802
scoring_system	epss
scoring_elements	0.93694
published_at	2026-04-04T12:55:00Z

value	0.11802
scoring_system	epss
scoring_elements	0.93696
published_at	2026-04-07T12:55:00Z

value	0.11802
scoring_system	epss
scoring_elements	0.93708
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-50868

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4408
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4408

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50387
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50387

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50868
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50868

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5517
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5517

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5679
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5679

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html

reference_id

017430.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063845
reference_id	1063845
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063845

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063852
reference_id	1063852
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063852

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1077751
reference_id	1077751
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1077751

reference_url

http://www.openwall.com/lists/oss-security/2024/02/16/2

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

http://www.openwall.com/lists/oss-security/2024/02/16/2

reference_url

https://www.isc.org/blogs/2024-bind-security-release/

reference_id

2024-bind-security-release

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://www.isc.org/blogs/2024-bind-security-release/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2263917
reference_id	2263917
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2263917

reference_url

http://www.openwall.com/lists/oss-security/2024/02/16/3

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

http://www.openwall.com/lists/oss-security/2024/02/16/3

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ/

reference_id

6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/

reference_id

BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/

reference_url

https://kb.isc.org/docs/cve-2023-50868

reference_id

cve-2023-50868

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://kb.isc.org/docs/cve-2023-50868

reference_url

https://access.redhat.com/security/cve/CVE-2023-50868

reference_id

CVE-2023-50868

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://access.redhat.com/security/cve/CVE-2023-50868

reference_url	https://security.gentoo.org/glsa/202412-10
reference_id	GLSA-202412-10
reference_type
scores
url	https://security.gentoo.org/glsa/202412-10

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/

reference_id

HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6/

reference_id

IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6/

reference_url

https://lists.debian.org/debian-lts-announce/2024/02/msg00006.html

reference_id

msg00006.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.debian.org/debian-lts-announce/2024/02/msg00006.html

reference_url

https://lists.debian.org/debian-lts-announce/2024/05/msg00011.html

reference_id

msg00011.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.debian.org/debian-lts-announce/2024/05/msg00011.html

reference_url

https://security.netapp.com/advisory/ntap-20240307-0008/

reference_id

ntap-20240307-0008

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://security.netapp.com/advisory/ntap-20240307-0008/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/

reference_id

PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/

reference_url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html

reference_id

powerdns-advisory-2024-01.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html

reference_url

https://datatracker.ietf.org/doc/html/rfc5155

reference_id

rfc5155

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://datatracker.ietf.org/doc/html/rfc5155

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/

reference_id

RGS7JN6FZXUSTC2XKQHH27574XOULYYJ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/

reference_url	https://access.redhat.com/errata/RHSA-2024:0965
reference_id	RHSA-2024:0965
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0965

reference_url	https://access.redhat.com/errata/RHSA-2024:0977
reference_id	RHSA-2024:0977
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0977

reference_url	https://access.redhat.com/errata/RHSA-2024:0981
reference_id	RHSA-2024:0981
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0981

reference_url	https://access.redhat.com/errata/RHSA-2024:0982
reference_id	RHSA-2024:0982
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0982

reference_url	https://access.redhat.com/errata/RHSA-2024:11003
reference_id	RHSA-2024:11003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11003

reference_url	https://access.redhat.com/errata/RHSA-2024:1334
reference_id	RHSA-2024:1334
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1334

reference_url	https://access.redhat.com/errata/RHSA-2024:1335
reference_id	RHSA-2024:1335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1335

reference_url	https://access.redhat.com/errata/RHSA-2024:1522
reference_id	RHSA-2024:1522
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1522

reference_url	https://access.redhat.com/errata/RHSA-2024:1543
reference_id	RHSA-2024:1543
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1543

reference_url	https://access.redhat.com/errata/RHSA-2024:1544
reference_id	RHSA-2024:1544
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1544

reference_url	https://access.redhat.com/errata/RHSA-2024:1545
reference_id	RHSA-2024:1545
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1545

reference_url	https://access.redhat.com/errata/RHSA-2024:1647
reference_id	RHSA-2024:1647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1647

reference_url	https://access.redhat.com/errata/RHSA-2024:1648
reference_id	RHSA-2024:1648
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1648

reference_url	https://access.redhat.com/errata/RHSA-2024:1781
reference_id	RHSA-2024:1781
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1781

reference_url	https://access.redhat.com/errata/RHSA-2024:1782
reference_id	RHSA-2024:1782
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1782

reference_url	https://access.redhat.com/errata/RHSA-2024:1789
reference_id	RHSA-2024:1789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1789

reference_url	https://access.redhat.com/errata/RHSA-2024:1800
reference_id	RHSA-2024:1800
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1800

reference_url	https://access.redhat.com/errata/RHSA-2024:1801
reference_id	RHSA-2024:1801
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1801

reference_url	https://access.redhat.com/errata/RHSA-2024:1803
reference_id	RHSA-2024:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1803

reference_url	https://access.redhat.com/errata/RHSA-2024:1804
reference_id	RHSA-2024:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1804

reference_url	https://access.redhat.com/errata/RHSA-2024:2551
reference_id	RHSA-2024:2551
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2551

reference_url	https://access.redhat.com/errata/RHSA-2024:2587
reference_id	RHSA-2024:2587
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2587

reference_url	https://access.redhat.com/errata/RHSA-2024:2696
reference_id	RHSA-2024:2696
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2696

reference_url	https://access.redhat.com/errata/RHSA-2024:2720
reference_id	RHSA-2024:2720
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2720

reference_url	https://access.redhat.com/errata/RHSA-2024:2721
reference_id	RHSA-2024:2721
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2721

reference_url	https://access.redhat.com/errata/RHSA-2024:2821
reference_id	RHSA-2024:2821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2821

reference_url	https://access.redhat.com/errata/RHSA-2024:2890
reference_id	RHSA-2024:2890
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2890

reference_url	https://access.redhat.com/errata/RHSA-2024:3271
reference_id	RHSA-2024:3271
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3271

reference_url	https://access.redhat.com/errata/RHSA-2024:3741
reference_id	RHSA-2024:3741
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3741

reference_url	https://access.redhat.com/errata/RHSA-2024:3877
reference_id	RHSA-2024:3877
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3877

reference_url	https://access.redhat.com/errata/RHSA-2024:3929
reference_id	RHSA-2024:3929
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3929

reference_url	https://access.redhat.com/errata/RHSA-2025:0039
reference_id	RHSA-2025:0039
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0039

reference_url

https://bugzilla.suse.com/show_bug.cgi?id=1219826

reference_id

show_bug.cgi?id=1219826

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://bugzilla.suse.com/show_bug.cgi?id=1219826

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/

reference_id

SVYA42BLXUCIDLD35YIJPJSHDIADNYMP

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG/

reference_id

TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG/

reference_url

https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/

reference_id

unbound-1.19.1-released

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7/

reference_id

UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7/

reference_url	https://usn.ubuntu.com/6633-1/
reference_id	USN-6633-1
reference_type
scores
url	https://usn.ubuntu.com/6633-1/

reference_url	https://usn.ubuntu.com/6642-1/
reference_id	USN-6642-1
reference_type
scores
url	https://usn.ubuntu.com/6642-1/

reference_url	https://usn.ubuntu.com/6657-1/
reference_id	USN-6657-1
reference_type
scores
url	https://usn.ubuntu.com/6657-1/

reference_url	https://usn.ubuntu.com/6657-2/
reference_id	USN-6657-2
reference_type
scores
url	https://usn.ubuntu.com/6657-2/

reference_url	https://usn.ubuntu.com/6665-1/
reference_id	USN-6665-1
reference_type
scores
url	https://usn.ubuntu.com/6665-1/

reference_url	https://usn.ubuntu.com/6723-1/
reference_id	USN-6723-1
reference_type
scores
url	https://usn.ubuntu.com/6723-1/

reference_url

https://gitlab.nic.cz/knot/knot-resolver/-/releases/v5.7.1

reference_id

v5.7.1

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://gitlab.nic.cz/knot/knot-resolver/-/releases/v5.7.1

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/

reference_id

ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-19T20:27:54Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/

fixed_packages

url pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

purl pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ugc-uygs-hqb8

vulnerability	VCID-cdzz-8tc8-jucu

vulnerability	VCID-m445-c6a1-uugf

vulnerability	VCID-pjbp-1jgm-s3cg

vulnerability	VCID-umcq-ztbz-qfb2

vulnerability	VCID-wywf-pmyt-zud4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.8.8-1%252Bdeb12u1

aliases CVE-2023-50868

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vprj-j7u6-zbe7

url VCID-wmgd-z2j3-h7d9

vulnerability_id VCID-wmgd-z2j3-h7d9

summary An attacker can publish a zone containing specific Resource Record Sets. Repeatedly processing and caching results for these sets can lead to a denial of service.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-25590

reference_id

reference_type

scores

value	0.00126
scoring_system	epss
scoring_elements	0.31923
published_at	2026-04-18T12:55:00Z

value	0.00126
scoring_system	epss
scoring_elements	0.31944
published_at	2026-04-16T12:55:00Z

value	0.00126
scoring_system	epss
scoring_elements	0.31911
published_at	2026-04-13T12:55:00Z

value	0.00126
scoring_system	epss
scoring_elements	0.32036
published_at	2026-04-02T12:55:00Z

value	0.00126
scoring_system	epss
scoring_elements	0.32076
published_at	2026-04-04T12:55:00Z

value	0.00126
scoring_system	epss
scoring_elements	0.319
published_at	2026-04-07T12:55:00Z

value	0.00126
scoring_system	epss
scoring_elements	0.31952
published_at	2026-04-08T12:55:00Z

value	0.00126
scoring_system	epss
scoring_elements	0.31981
published_at	2026-04-09T12:55:00Z

value	0.00126
scoring_system	epss
scoring_elements	0.31984
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-25590

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25590
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25590

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1083285
reference_id	1083285
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1083285

reference_url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-04.html

reference_id

powerdns-advisory-2024-04.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T17:34:21Z/

url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-04.html

fixed_packages

url pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

purl pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ugc-uygs-hqb8

vulnerability	VCID-cdzz-8tc8-jucu

vulnerability	VCID-m445-c6a1-uugf

vulnerability	VCID-pjbp-1jgm-s3cg

vulnerability	VCID-umcq-ztbz-qfb2

vulnerability	VCID-wywf-pmyt-zud4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.8.8-1%252Bdeb12u1

aliases CVE-2024-25590

risk_score 1.9

exploitability 0.5

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wmgd-z2j3-h7d9

url VCID-wywf-pmyt-zud4

vulnerability_id VCID-wywf-pmyt-zud4

summary An attacker spoofing answers to ECS enabled requests sent out by the Recursor has a chance of success higher than non-ECS enabled queries. The updated version include various mitigations against spoofing attempts of ECS enabled queries by chaining ECS enabled requests and enforcing stricter validation of the received answers. The most strict mitigation done when the new setting outgoing.edns_subnet_harden (old style name edns-subnet-harden) is enabled.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-30192

reference_id

reference_type

scores

value	0.00033
scoring_system	epss
scoring_elements	0.09742
published_at	2026-04-04T12:55:00Z

value	0.00033
scoring_system	epss
scoring_elements	0.09691
published_at	2026-04-02T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.1346
published_at	2026-04-09T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.1341
published_at	2026-04-08T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13434
published_at	2026-04-11T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13399
published_at	2026-04-12T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13352
published_at	2026-04-13T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13327
published_at	2026-04-07T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.14882
published_at	2026-04-18T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.14876
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-30192

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30192
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30192

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109808
reference_id	1109808
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109808

reference_url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-04.html

reference_id

powerdns-advisory-2025-04.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-21T13:05:23Z/

url

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-04.html

fixed_packages

url	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
purl	pkg:deb/debian/pdns-recursor@5.2.8-0%2Bdeb13u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@5.2.8-0%252Bdeb13u1

aliases CVE-2025-30192

risk_score 1.9

exploitability 0.5

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wywf-pmyt-zud4

Fixing_vulnerabilities

url VCID-12cd-ky6m-qkdg

vulnerability_id VCID-12cd-ky6m-qkdg

summary security update

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-12244

reference_id

reference_type

scores

value	0.00094
scoring_system	epss
scoring_elements	0.26153
published_at	2026-04-18T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26302
published_at	2026-04-01T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26342
published_at	2026-04-02T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26383
published_at	2026-04-04T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26156
published_at	2026-04-07T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26224
published_at	2026-04-08T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26272
published_at	2026-04-09T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26278
published_at	2026-04-11T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26233
published_at	2026-04-12T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26174
published_at	2026-04-13T12:55:00Z

value	0.00094
scoring_system	epss
scoring_elements	0.26178
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-12244

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10995
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10995

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12244
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12244

reference_url	https://security.archlinux.org/ASA-202005-10
reference_id	ASA-202005-10
reference_type
scores
url	https://security.archlinux.org/ASA-202005-10

reference_url

https://security.archlinux.org/AVG-1163

reference_id

AVG-1163

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1163

fixed_packages

url pkg:deb/debian/pdns-recursor@4.1.11-1%2Bdeb10u1

purl pkg:deb/debian/pdns-recursor@4.1.11-1%2Bdeb10u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-12cd-ky6m-qkdg

vulnerability	VCID-3e3b-z5bh-pban

vulnerability	VCID-htr2-rwgm-47ed

vulnerability	VCID-n2k6-nfxs-7ydj

vulnerability	VCID-s6ds-tuus-n7hr

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.1.11-1%252Bdeb10u1

url pkg:deb/debian/pdns-recursor@4.4.2-3

purl pkg:deb/debian/pdns-recursor@4.4.2-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ugc-uygs-hqb8

vulnerability	VCID-66sa-bc5p-jqde

vulnerability	VCID-7dc3-qdk8-k7b2

vulnerability	VCID-8tar-s444-zfac

vulnerability	VCID-cdzz-8tc8-jucu

vulnerability	VCID-m445-c6a1-uugf

vulnerability	VCID-mkcs-362g-t7aq

vulnerability	VCID-pjbp-1jgm-s3cg

vulnerability	VCID-umcq-ztbz-qfb2

vulnerability	VCID-vprj-j7u6-zbe7

vulnerability	VCID-wmgd-z2j3-h7d9

vulnerability	VCID-wywf-pmyt-zud4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.4.2-3

aliases CVE-2020-12244

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-12cd-ky6m-qkdg

url VCID-3e3b-z5bh-pban

vulnerability_id VCID-3e3b-z5bh-pban

summary An issue has been found in PowerDNS Recursor 4.1.0 up to and including 4.3.0. It allows an attacker (with enough privileges to change the system's hostname) to cause disclosure of uninitialized memory content via a stack-based out-of-bounds read. It only occurs on systems where gethostname() does not have '\0' termination of the returned string if the hostname is larger than the supplied buffer. (Linux systems are not affected because the buffer is always large enough. OpenBSD systems are not affected because the returned hostname always has '\0' termination.) Under some conditions, this issue can lead to the writing of one '\0' byte out-of-bounds on the stack, causing a denial of service or possibly arbitrary code execution.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-10030

reference_id

reference_type

scores

value	0.00029
scoring_system	epss
scoring_elements	0.08041
published_at	2026-04-01T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08131
published_at	2026-04-02T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08174
published_at	2026-04-04T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08121
published_at	2026-04-07T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.0819
published_at	2026-04-08T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08208
published_at	2026-04-09T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08198
published_at	2026-04-11T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08178
published_at	2026-04-12T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08161
published_at	2026-04-13T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08061
published_at	2026-04-16T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08046
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-10030

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10030
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10030

fixed_packages

url pkg:deb/debian/pdns-recursor@4.4.2-3

purl pkg:deb/debian/pdns-recursor@4.4.2-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ugc-uygs-hqb8

vulnerability	VCID-66sa-bc5p-jqde

vulnerability	VCID-7dc3-qdk8-k7b2

vulnerability	VCID-8tar-s444-zfac

vulnerability	VCID-cdzz-8tc8-jucu

vulnerability	VCID-m445-c6a1-uugf

vulnerability	VCID-mkcs-362g-t7aq

vulnerability	VCID-pjbp-1jgm-s3cg

vulnerability	VCID-umcq-ztbz-qfb2

vulnerability	VCID-vprj-j7u6-zbe7

vulnerability	VCID-wmgd-z2j3-h7d9

vulnerability	VCID-wywf-pmyt-zud4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.4.2-3

aliases CVE-2020-10030

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3e3b-z5bh-pban

url VCID-htr2-rwgm-47ed

vulnerability_id VCID-htr2-rwgm-47ed

summary

A vulnerability in PowerDNS Recursor could lead to a Denial of
    Service condition.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25829

reference_id

reference_type

scores

value	0.00348
scoring_system	epss
scoring_elements	0.57419
published_at	2026-04-18T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57287
published_at	2026-04-01T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57369
published_at	2026-04-02T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57391
published_at	2026-04-04T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57366
published_at	2026-04-07T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57418
published_at	2026-04-08T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57421
published_at	2026-04-09T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57436
published_at	2026-04-11T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57415
published_at	2026-04-12T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57396
published_at	2026-04-13T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57423
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25829

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25829
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25829

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972159
reference_id	972159
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972159

reference_url	https://security.archlinux.org/ASA-202010-6
reference_id	ASA-202010-6
reference_type
scores
url	https://security.archlinux.org/ASA-202010-6

reference_url

https://security.archlinux.org/AVG-1243

reference_id

AVG-1243

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1243

reference_url	https://security.gentoo.org/glsa/202012-19
reference_id	GLSA-202012-19
reference_type
scores
url	https://security.gentoo.org/glsa/202012-19

fixed_packages

url pkg:deb/debian/pdns-recursor@4.4.2-3

purl pkg:deb/debian/pdns-recursor@4.4.2-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ugc-uygs-hqb8

vulnerability	VCID-66sa-bc5p-jqde

vulnerability	VCID-7dc3-qdk8-k7b2

vulnerability	VCID-8tar-s444-zfac

vulnerability	VCID-cdzz-8tc8-jucu

vulnerability	VCID-m445-c6a1-uugf

vulnerability	VCID-mkcs-362g-t7aq

vulnerability	VCID-pjbp-1jgm-s3cg

vulnerability	VCID-umcq-ztbz-qfb2

vulnerability	VCID-vprj-j7u6-zbe7

vulnerability	VCID-wmgd-z2j3-h7d9

vulnerability	VCID-wywf-pmyt-zud4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.4.2-3

aliases CVE-2020-25829

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-htr2-rwgm-47ed

url VCID-n2k6-nfxs-7ydj

vulnerability_id VCID-n2k6-nfxs-7ydj

summary security update

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-10995

reference_id

reference_type

scores

value	0.00091
scoring_system	epss
scoring_elements	0.25576
published_at	2026-04-18T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25677
published_at	2026-04-09T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25747
published_at	2026-04-02T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25789
published_at	2026-04-04T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25558
published_at	2026-04-07T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25631
published_at	2026-04-08T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25687
published_at	2026-04-11T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25646
published_at	2026-04-12T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.2559
published_at	2026-04-13T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25592
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-10995

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10995
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10995

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12244
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12244

reference_url	https://security.archlinux.org/ASA-202005-10
reference_id	ASA-202005-10
reference_type
scores
url	https://security.archlinux.org/ASA-202005-10

reference_url

https://security.archlinux.org/AVG-1163

reference_id

AVG-1163

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1163

fixed_packages

url pkg:deb/debian/pdns-recursor@4.1.11-1%2Bdeb10u1

purl pkg:deb/debian/pdns-recursor@4.1.11-1%2Bdeb10u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-12cd-ky6m-qkdg

vulnerability	VCID-3e3b-z5bh-pban

vulnerability	VCID-htr2-rwgm-47ed

vulnerability	VCID-n2k6-nfxs-7ydj

vulnerability	VCID-s6ds-tuus-n7hr

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.1.11-1%252Bdeb10u1

url pkg:deb/debian/pdns-recursor@4.4.2-3

purl pkg:deb/debian/pdns-recursor@4.4.2-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ugc-uygs-hqb8

vulnerability	VCID-66sa-bc5p-jqde

vulnerability	VCID-7dc3-qdk8-k7b2

vulnerability	VCID-8tar-s444-zfac

vulnerability	VCID-cdzz-8tc8-jucu

vulnerability	VCID-m445-c6a1-uugf

vulnerability	VCID-mkcs-362g-t7aq

vulnerability	VCID-pjbp-1jgm-s3cg

vulnerability	VCID-umcq-ztbz-qfb2

vulnerability	VCID-vprj-j7u6-zbe7

vulnerability	VCID-wmgd-z2j3-h7d9

vulnerability	VCID-wywf-pmyt-zud4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.4.2-3

aliases CVE-2020-10995

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n2k6-nfxs-7ydj

url VCID-s6ds-tuus-n7hr

vulnerability_id VCID-s6ds-tuus-n7hr

summary In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-14196

reference_id

reference_type

scores

value	0.00025
scoring_system	epss
scoring_elements	0.06655
published_at	2026-04-18T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06664
published_at	2026-04-16T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06566
published_at	2026-04-01T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06634
published_at	2026-04-02T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06679
published_at	2026-04-04T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06665
published_at	2026-04-07T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06714
published_at	2026-04-08T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06748
published_at	2026-04-09T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06747
published_at	2026-04-11T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.0674
published_at	2026-04-12T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06733
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-14196

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14196
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14196

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=964103
reference_id	964103
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=964103

reference_url

https://security.archlinux.org/AVG-1199

reference_id

AVG-1199

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1199

fixed_packages

url pkg:deb/debian/pdns-recursor@4.4.2-3

purl pkg:deb/debian/pdns-recursor@4.4.2-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ugc-uygs-hqb8

vulnerability	VCID-66sa-bc5p-jqde

vulnerability	VCID-7dc3-qdk8-k7b2

vulnerability	VCID-8tar-s444-zfac

vulnerability	VCID-cdzz-8tc8-jucu

vulnerability	VCID-m445-c6a1-uugf

vulnerability	VCID-mkcs-362g-t7aq

vulnerability	VCID-pjbp-1jgm-s3cg

vulnerability	VCID-umcq-ztbz-qfb2

vulnerability	VCID-vprj-j7u6-zbe7

vulnerability	VCID-wmgd-z2j3-h7d9

vulnerability	VCID-wywf-pmyt-zud4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.4.2-3

aliases CVE-2020-14196

risk_score 1.4

exploitability 0.5

weighted_severity 2.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s6ds-tuus-n7hr

Risk_score 3.4

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.4.2-3

Package Instance