Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insufficient validation of HTTPS and SVCB records
Vulnerability Description
An operator allowed to use the REST API can cause the Authoritative server to produce invalid HTTPS or SVCB record data, which can in turn cause LMDB database corruption, if using the LMDB backend.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
PowerDNS Authoritative Server 输入验证错误漏洞
Vulnerability Description
PowerDNS Authoritative Server是荷兰PowerDNS公司的一款DNS服务器。 PowerDNS Authoritative Server存在输入验证错误漏洞,该漏洞源于允许使用REST API的操作员可能导致权威服务器生成无效的HTTPS或SVCB记录数据,如果使用LMDB后端,可能进而导致LMDB数据库损坏。
CVSS Information
N/A
Vulnerability Type
N/A