Remote Code Execution Vulnerability in PowerDNS Recursor by PowerDNS
CVE-2023-22617
7.5HIGH
What is CVE-2023-22617?
A vulnerability exists in PowerDNS Recursor 4.8.0 that allows a remote attacker to exploit a DNS query resulting in infinite recursion. This flaw arises due to QName minimization in QM fallback mode when retrieving DS records from misconfigured domains. The issue has been addressed in version 4.8.1, which mitigates the possibility of such exploits.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved