PT-2026-52381 · Powerdns · Dnsdist

Qifan Zhang

Published

2026-06-25

Updated

2026-06-25

CVE-2026-40209

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

An attacker might be able to cause outgoing TCP connections to backend to be stuck until a timeout occurs instead of being released immediately, by sending IXFR queries. This could be used to cause a denial of service if there is a limit to the number of concurrent connections to this backend, or if the process runs out of file descriptors.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-40209

Affected Products

Dnsdist

PT-2026-52381 · Powerdns · Dnsdist

CVE-2026-40209

Related Identifiers

Affected Products

References · 2