CVE-2023-26437

Denial of service vulnerability in PowerDNS Recursor allows authoritative servers to be marked unavailable.This issue affects Recursor: through 4.6.5, through 4.7.4 , through 4.8.3.

Published: Apr 4, 2023
Updated: May 4, 2025
CVE: CVE-2023-26437
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
powerdns / recursor	4.8.0	4.8.4
powerdns / recursor	4.7.0	4.7.5
powerdns / recursor	-	4.6.6

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2023-02.html
https://lists.fedoraproject.org/archives/list/[email protected]/message/CN7VMRYKZHG2UDUAK326LXD3JY7NO3LR/
https://lists.fedoraproject.org/archives/list/[email protected]/message/IHPD6SIQOG7245GXFQHPUEI4AZ6Y3KD6/

Vulnerability Database

289,599

CVE-2023-26437