← volver
CVE-2026-33611

Insufficient validation of HTTPS and SVCB records

CVSS 6.5 MEDIUMEPSS 0.4%CWE-190
An operator allowed to use the REST API can cause the Authoritative server to produce invalid HTTPS or SVCB record data, which can in turn cause LMDB database corruption, if using the LMDB backend.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
Productos afectados
PowerDNS · Authoritative

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-powerdns-2026-05.html