Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-15091

An issue has been found in the API component of PowerDNS Authoritative 4.x up to and including 4.0.4 and 3.x up to and including 3.4.11, where some operations that have an impact on the state of the server are still allowed even though the API has been configured as read-only via the api-readonly keyword. This missing check allows an attacker with valid API credentials to flush the cache, trigger a zone transfer or send a NOTIFY.

Published

2018-01-23T15:29:00.277

Last Modified

2024-11-21T03:14:03.160

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 7.1 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:S/C:N/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: SINGLE
Confidentiality Impact: NONE
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

8.0

Impact Score

4.9

Weaknesses

Type: Secondary
CWE-863
Type: Primary
CWE-358

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	powerdns	authoritative	≤ 3.4.11	Yes
Application	powerdns	authoritative	≤ 4.0.4	Yes

References

http://www.securityfocus.com/bid/101982 Third Party Advisory, VDB Entry ([email protected])
https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2017-04.html Patch, Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/101982 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2017-04.html Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)