CVE-2026-33602

· NIST NVD ↗

A rogue backend can send a crafted UDP response with a query ID off by one related to the maximum configured value, triggering an out-of-bounds write leading to a denial of service.

MEDIUM
CVSS severity
6.5
CVSS base score
2026-04-22
Published

CWE codes

CWE-122

Affected products

powerdns:dnsdist

Sources