CVE-2014-7210

pdns specific as packaged in Debian in version before 3.3.1-1 creates a too privileged MySQL user. It was discovered that the maintainer scripts of pdns-backend-mysql grant too wide database permissions for the pdns user. Other backends are not affected.

Published: Jun 26, 2025
Updated: Jun 27, 2025
CVE: CVE-2014-7210
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
debian / pdns	-	3.3.1-1
debian / debian_linux	7.0	7.0.x

https://lists.debian.org/debian-lts-announce/2016/05/msg00046.html
https://salsa.debian.org/debian/pdns/-/commit/f0de6b3583039bb63344fbd5eb246939264d7b05

Vulnerability Database

CVE-2014-7210