CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-1868

The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 56.9%

CVSS Severity

CVSS v2 Score 7.8

References

Products affected by CVE-2015-1868

Powerdns » Authoritative » Version: 3.2

cpe:2.3:a:powerdns:authoritative:3.2
Powerdns » Authoritative » Version: 3.3

cpe:2.3:a:powerdns:authoritative:3.3
Powerdns » Authoritative » Version: 3.3.1

cpe:2.3:a:powerdns:authoritative:3.3.1
Powerdns » Authoritative » Version: 3.3.2

cpe:2.3:a:powerdns:authoritative:3.3.2
Powerdns » Authoritative » Version: 3.4.0

cpe:2.3:a:powerdns:authoritative:3.4.0
Powerdns » Authoritative » Version: 3.4.1

cpe:2.3:a:powerdns:authoritative:3.4.1
Powerdns » Authoritative » Version: 3.4.3

cpe:2.3:a:powerdns:authoritative:3.4.3
Powerdns » Recursor » Version: 3.5

cpe:2.3:a:powerdns:recursor:3.5
Powerdns » Recursor » Version: 3.5.1

cpe:2.3:a:powerdns:recursor:3.5.1
Powerdns » Recursor » Version: 3.5.2

cpe:2.3:a:powerdns:recursor:3.5.2
Powerdns » Recursor » Version: 3.5.3

cpe:2.3:a:powerdns:recursor:3.5.3
Powerdns » Recursor » Version: 3.6.0

cpe:2.3:a:powerdns:recursor:3.6.0
Powerdns » Recursor » Version: 3.6.1

cpe:2.3:a:powerdns:recursor:3.6.1
Powerdns » Recursor » Version: 3.6.2

cpe:2.3:a:powerdns:recursor:3.6.2
Powerdns » Recursor » Version: 3.6.3

cpe:2.3:a:powerdns:recursor:3.6.3
Powerdns » Recursor » Version: 3.7.1

cpe:2.3:a:powerdns:recursor:3.7.1
Fedoraproject » Fedora » Version: 20

cpe:2.3:o:fedoraproject:fedora:20
Fedoraproject » Fedora » Version: 21

cpe:2.3:o:fedoraproject:fedora:21
Fedoraproject » Fedora » Version: 22

cpe:2.3:o:fedoraproject:fedora:22

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-1868

Products

Pricing

Contact Us