CNNVD-202507-2635 Information
CNNVD ID
CNNVD-202507-2635
Related CVE
- CNNVD Published: 2025-07-21
Description (Chinese)
PowerDNS Recursor(pdns_recursor)是荷兰PowerDNS公司的一款域名解析服务器。 PowerDNS Recursor 5.0.10、5.1.4和5.2.2及以上版本存在安全漏洞,该漏洞源于ECS启用查询的欺骗尝试成功几率高于非ECS查询,可能导致信息泄露。
Description (English)
PowerDNS Recursor (pdns recursor) is a domain-degrading server for PowerDNS in the Netherlands. PowerDNS Resursor 5.0.10, 5.1.4 and 5.2.2 and above have a security loophole, which stems from the fact that a fraudulent attempt to launch an ECS search has a higher chance of success than a non-ECS search, which may lead to a leak of information.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
PowerDNS
Published
2025-07-21
Last Modified
2026-02-24
References
https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-04.html https://access.redhat.com/security/cve/cve-2025-30192
Patch
https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-04.html
Share on: