CVE-2026-33254

· NIST NVD ↗

An attacker can create a large number of concurrent DoQ or DoH3 connections, causing unlimited memory allocation in DNSdist and leading to a denial of service. DOQ and DoH3 are disabled by default.

MEDIUM
CVSS severity
5.3
CVSS base score
2026-04-22
Published

CWE codes

CWE-770

Affected products

powerdns:dnsdist

Sources