PT-2026-52378 · Powerdns · Recursor

Danial Mahadzir

·

Published

2026-06-25

·

Updated

2026-06-25

·

CVE-2026-33612

CVSS v3.1

7.5

High

VectorAV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L
A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to cache poisoning.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2026-33612

Affected Products

Recursor