Vulnerabilities > Powerdns > Authoritative Server > High

DATE CVE VULNERABILITY TITLE RISK
2022-03-25 CVE-2022-27227 In PowerDNS Authoritative Server before 4.4.3, 4.5.x before 4.5.4, and 4.6.x before 4.6.1 and PowerDNS Recursor before 4.4.8, 4.5.x before 4.5.8, and 4.6.x before 4.6.1, insufficient validation of an IXFR end condition causes incomplete zone transfers to be handled as successful transfers.
network
low complexity
powerdns fedoraproject
7.5
2019-03-21 CVE-2019-3871 Improper Input Validation vulnerability in multiple products
A vulnerability was found in PowerDNS Authoritative Server before 4.0.7 and before 4.1.7.
network
low complexity
powerdns fedoraproject CWE-20
8.8
2016-09-26 CVE-2016-6172 Resource Exhaustion vulnerability in multiple products
PowerDNS (aka pdns) Authoritative Server before 4.0.1 allows remote primary DNS servers to cause a denial of service (memory exhaustion and secondary DNS server crash) via a large (1) AXFR or (2) IXFR response.
7.1