Vulnerabilities > Powerdns > Authoritative Server
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-25 | CVE-2022-27227 | In PowerDNS Authoritative Server before 4.4.3, 4.5.x before 4.5.4, and 4.6.x before 4.6.1 and PowerDNS Recursor before 4.4.8, 4.5.x before 4.5.8, and 4.6.x before 4.6.1, insufficient validation of an IXFR end condition causes incomplete zone transfers to be handled as successful transfers. | 7.5 |
| 2021-07-30 | CVE-2021-36754 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Powerdns Authoritative Server 4.5.0 PowerDNS Authoritative Server 4.5.0 before 4.5.1 allows anybody to crash the process by sending a specific query (QTYPE 65535) that causes an out-of-bounds exception. | 7.5 |
| 2019-11-22 | CVE-2019-10203 | Incorrect Conversion between Numeric Types vulnerability in Powerdns Authoritative Server PowerDNS Authoritative daemon , pdns versions 4.0.x before 4.0.9, 4.1.x before 4.1.11, exiting when encountering a serial between 2^31 and 2^32-1 while trying to notify a slave leads to DoS. | 4.3 |
| 2019-03-21 | CVE-2019-3871 | Improper Input Validation vulnerability in multiple products A vulnerability was found in PowerDNS Authoritative Server before 4.0.7 and before 4.1.7. | 8.8 |
| 2016-09-26 | CVE-2016-6172 | Resource Exhaustion vulnerability in multiple products PowerDNS (aka pdns) Authoritative Server before 4.0.1 allows remote primary DNS servers to cause a denial of service (memory exhaustion and secondary DNS server crash) via a large (1) AXFR or (2) IXFR response. | 6.8 |