Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2026-42000
PUBLISHED
More InfoOfficial Page
Assigner-OX
Assigner Org ID-8ce71d90-2354-404b-a86e-bec2cc4e6981
View Known Exploited Vulnerability (KEV) details
Published At-21 May, 2026 | 09:25
Updated At-21 May, 2026 | 12:02
Rejected At-
▼CVE Numbering Authority (CNA)
Insufficient Validation of Names During AXFR

Insufficient Validation of Names During AXFR

Affected Products
Vendor
PowerDNS
Product
Authoritative
Collection URL
https://repo.powerdns.com/
Package Name
pdns
Repo
https://github.com/PowerDNS/pdns
Modules
  • BIND Backend
Program Files
  • bindbackend2.cc
Default Status
unaffected
Versions
Affected
  • From 4.9.0 before 4.9.15 (semver)
  • From 5.0.0 before 5.0.5 (semver)
Problem Types
TypeCWE IDDescription
CWEImproperImproper Neutralization of Special Elements used in a Command ('Command Injection')
Type: CWE
CWE ID: Improper
Description: Improper Neutralization of Special Elements used in a Command ('Command Injection')
Metrics
VersionBase scoreBase severityVector
3.16.8MEDIUM
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N
Version: 3.1
Base score: 6.8
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
finder
ilhamaf
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-powerdns-2026-06.html
N/A
Hyperlink: https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-powerdns-2026-06.html
Resource: N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Problem Types
TypeCWE IDDescription
CWECWE-77CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')
Type: CWE
CWE ID: CWE-77
Description: CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found