Vulnerabilities in PowerDNS
72 resultsCVE-2026-33593HIGHDenial of service via crafted DNSCrypt queryEPSS 0.4%CVE-2026-33595MEDIUMDoQ/DoH3 excessive memory allocationEPSS 0.4%CVE-2026-33594MEDIUMOutgoing DoH excessive memory allocationEPSS 0.4%CVE-2026-33254MEDIUMResource exhaustion via DoQ/DoH3 connectionsEPSS 0.4%CVE-2026-42001HIGHInsufficient Validation of Autoprimary SOA QueriesEPSS 0.4%CVE-2026-42396MEDIUMInsufficient Validation of Member Zone Data May Cause Catalog Zone Transfer to FailEPSS 0.4%CVE-2026-52690MEDIUMSpoofed answers can mark an authoritative non-EDNS capableEPSS 0.4%CVE-2026-33597LOWPRSD detection denial of serviceEPSS 0.3%CVE-2026-40210MEDIUMOut-of-bounds read in SetMacAddrActionEPSS 0.3%CVE-2025-59029MEDIUMInternal logic flaw in cache management can lead to a denial of service in PowerDNS RecursorEPSS 0.3%CVE-2026-40012MEDIUMInformation about ECS zero scoped answers might leak to clients that use a specific ECSEPSS 0.3%CVE-2026-40208LOWDenial of service via DoH3 queriesEPSS 0.3%CVE-2026-33599LOWOut-of-bounds read in service discoveryEPSS 0.3%CVE-2025-30187LOWDenial of service via crafted DoH exchange in PowerDNS DNSdistEPSS 0.3%CVE-2025-59023HIGHCrafted delegations or IP fragments can poison cached delegations in RecursorEPSS 0.3%CVE-2026-42002MEDIUMConcurrency and locking defects in GSS-TSIGEPSS 0.3%CVE-2026-33609MEDIUMLDAP DN injectionEPSS 0.2%CVE-2026-42000MEDIUMInsufficient Validation of Names During AXFREPSS 0.2%CVE-2025-30192HIGHA Recursor configured to send out ECS enabled queries can be sensitive to spoofing attemptsEPSS 0.2%CVE-2026-33261MEDIUMNull pointer accces in aggressive NSEC(3) cacheEPSS 0.2%