Vulnerabilities > Powerdns > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-10-02 | CVE-2020-24698 | Double Free vulnerability in Powerdns Authoritative An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. | 9.8 |
2019-01-29 | CVE-2019-3807 | Improper Certificate Validation vulnerability in Powerdns Recursor An issue has been found in PowerDNS Recursor versions 4.1.x before 4.1.9 where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to bypass DNSSEC validation. | 9.8 |