CVE-2025-59024

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L

Name of the Vulnerable Software and Affected Versions PDNS Recursor versions prior to 5.2.6-0+deb13u1

Description Insufficient validation of delegation information could lead to cache pollution in PDNS Recursor, a resolving name server. The changes required to address this are too extensive to backport to the version of PDNS Recursor included in the oldstable distribution (bookworm).

Recommendations Upgrade pdns-recursor packages to version 5.2.6-0+deb13u1 or later. For affected setups using the oldstable distribution (bookworm), upgrade to Debian stable/trixie.

Fix

Insufficient Verification of Data Authenticity

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-345CWE-74

Related Identifiers

BDU:2026-00248

CVE-2025-59024

DSA-6045-1

Affected Products

Debian

Pdns-Recursor

Powerdns Recursor

Red Os

CVE-2025-59024

Weakness Enumeration

Related Identifiers

Affected Products

References · 20