Unrated severityNVD Advisory· Published Oct 2, 2020· Updated Aug 4, 2024
CVE-2020-24697
CVE-2020-24697
Description
An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker can cause a denial of service by sending crafted queries with a GSS-TSIG signature.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8- PowerDNS/PowerDNS Authoritativedescription
- Range: <=4.3.0
- osv-coords6 versionspkg:deb/ubuntu/pdns?arch=src?distro=esm-apps/bionicpkg:deb/ubuntu/pdns?arch=src?distro=esm-apps/xenialpkg:deb/ubuntu/pdns?arch=src?distro=focalpkg:deb/ubuntu/pdns?arch=src?distro=jammypkg:deb/ubuntu/pdns?arch=src?distro=noblepkg:deb/ubuntu/pdns?arch=src?distro=oracular
>= 0+ 5 more
- (no CPE)range: >= 0
- (no CPE)range: >= 0
- (no CPE)range: >= 0
- (no CPE)range: >= 0
- (no CPE)range: >= 0
- (no CPE)range: >= 0
Patches
Vulnerability mechanics
References
1- doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2020-06.htmlmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.