Medium severity5.3NVD Advisory· Published Jul 1, 2020· Updated Jun 17, 2026
CVE-2020-14196
CVE-2020-14196
Description
In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8- PowerDNS/Recursordescription
- osv-coords6 versionspkg:rpm/opensuse/pdns-recursor&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/pdns-recursor&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/pdns-recursor&distro=openSUSE%20Tumbleweedpkg:rpm/suse/pdns-recursor&distro=SUSE%20Package%20Hub%2012%20SP1pkg:rpm/suse/pdns-recursor&distro=SUSE%20Package%20Hub%2015%20SP1pkg:rpm/suse/pdns-recursor&distro=SUSE%20Package%20Hub%2015%20SP2
< 4.1.12-bp151.4.6.1+ 5 more
- (no CPE)range: < 4.1.12-bp151.4.6.1
- (no CPE)range: < 4.1.12-bp151.4.6.1
- (no CPE)range: < 4.5.5-1.3
- (no CPE)range: < 4.1.12-bp151.4.6.1
- (no CPE)range: < 4.1.12-bp151.4.6.1
- (no CPE)range: < 4.3.5-bp152.2.12.1
Patches
Vulnerability mechanics
References
7- lists.opensuse.org/opensuse-security-announce/2020-07/msg00043.htmlnvdThird Party Advisory
- doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-04.htmlnvdVendor Advisory
- www.openwall.com/lists/oss-security/2020/07/01/1nvdMailing ListRelease NotesThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2020-09/msg00042.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2020-09/msg00044.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2020-10/msg00036.htmlnvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7TUNCUZNASYSTVD35QGFAI6XO2BFMQ2F/nvd
News mentions
0No linked articles in our index yet.