PowerDNS Authoritative REST API Vulnerability Leading to LMDB Database Corruption

Vulnerability

A vulnerability exists in PowerDNS Authoritative servers that use the LMDB backend. Operators with access to the REST API can manipulate the server into generating incorrect HTTPS or SVCB record data. This mismanagement of data can lead to corruption of the LMDB database.

Impact

Exploitation of this vulnerability can cause corruption of the LMDB database, potentially leading to data loss or disruption of service.

Added: Apr 22, 2026, 2:23 PM

Updated: Apr 22, 2026, 2:23 PM

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

0.6

exploitability

5.4

remediation

0.0

relevance

6.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

0.6

exploitability

5.4

remediation

0.0

relevance

6.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

PowerDNS Authoritative REST API Vulnerability Leading to LMDB Database Corruption

Vulnerability

Impact

Affected Products

Open-Xchange PowerDNS Authoritative

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating