cbcvebase.
CVE-2017-15092
published 2018-01-23

CVE-2017-15092: A cross-site scripting issue has been found in the web interface of PowerDNS Recursor from 4.0.0 up to and including 4.0.6, where the qname of DNS queries was…

PriorityP427medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
EPSS
2.32%
81.3th percentile
A cross-site scripting issue has been found in the web interface of PowerDNS Recursor from 4.0.0 up to and including 4.0.6, where the qname of DNS queries was displayed without any escaping, allowing a remote attacker to inject HTML and Javascript code into the web interface, altering the content.

Affected

3 ranges
VendorProductVersion rangeFixed in
debianpdns-recursor< pdns-recursor 4.0.7-1 (bookworm)pdns-recursor 4.0.7-1 (bookworm)
powerdnspowerdns_recursor
powerdnsrecursor4.0.0 – 4.0.6

CVSS provenance

nvdv3.06.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv6.1MEDIUM
vendor_debian6.1MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.