CVE-2026-0397
Last modified
CVE-2026-0397 is a medium-severity vulnerability rated 4.3/10 on the CVSS scale. When the internal webserver is enabled (default is disabled), an attacker might be able to trick an administrator logged to the dashboard into visiting a malicious website and extract information about the running configuration from the dashboard. The root cause of the issue is a misconfiguration of the Cross-Origin Resource Sharing (CORS) policy.. EPSS estimates a 0.16% chance of exploitation in the next 30 days.
Description
When the internal webserver is enabled (default is disabled), an attacker might be able to trick an administrator logged to the dashboard into visiting a malicious website and extract information about the running configuration from the dashboard. The root cause of the issue is a misconfiguration of the Cross-Origin Resource Sharing (CORS) policy.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Powerdns | Dnsdist | >= 1.9.0, < 1.9.12 |
| Powerdns | Dnsdist | >= 2.0.0, < 2.0.3 |
References
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2026-0397?
How severe is CVE-2026-0397?
How do I fix CVE-2026-0397?
Are you affected by CVE-2026-0397?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST