CVE-2026-33608

Name of the Vulnerable Software and Affected Versions BIND (affected versions not specified)

Description An attacker can send a notify request that causes a new secondary domain to be added to the bind backend. This process leads the backend to update its configuration to an invalid state, resulting in a denial of service where the backend is unable to run upon the next restart and requires manual intervention to resolve.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.