CVE-2019-10163

Summary

A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master server to cause a high CPU load or even prevent any further updates to any slave zone by sending a large number of NOTIFY messages. Note that only servers configured as slaves are affected by this issue.

Affected Software

VendorProductVersion RangeStatus
PowerDNSpdnsfixed in 4.1.9affected
PowerDNSpdnsfixed in 4.0.8affected

Weaknesses

  • CWE-770: CWE-770

ADP Enrichment

CVE Program Container

Additional References

References