CVE-2026-33593

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions PowerDNS dnsdist versions 1.9.0 through 1.9.12 PowerDNS dnsdist versions 2.0.0 through 2.0.3

Description An unauthenticated remote attacker can cause a denial-of-service by sending a crafted DNSCrypt query. This action triggers a divide-by-zero error, which leads to a crash of internet-facing instances with DNSCrypt enabled.

Recommendations Update PowerDNS dnsdist versions 1.9.0 through 1.9.12 to version 1.9.13. Update PowerDNS dnsdist versions 2.0.0 through 2.0.3 to version 2.0.4.

Fix

DoS

Divide By Zero

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-369

Related Identifiers

CVE-2026-33593

OPENSUSE-SU-2026:10632-1

Affected Products

Dnsdist

CVE-2026-33593

Weakness Enumeration

Related Identifiers

Affected Products

References · 23