浏览 25+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-33593 | Denial of service via crafted DNSCrypt query | PowerDNS | DNSdist | High | 7.5 | 2026-04-22 13:48:31 | Deep Dive |
| CVE-2026-33594 | Outgoing DoH excessive memory allocation | PowerDNS | DNSdist | Medium | 5.3 | 2026-04-22 13:48:14 | Deep Dive |
| CVE-2026-33595 | DoQ/DoH3 excessive memory allocation | PowerDNS | DNSdist | Medium | 5.3 | 2026-04-22 13:47:56 | Deep Dive |
| CVE-2026-33597 | PRSD detection denial of service | PowerDNS | DNSdist | Low | 3.7 | 2026-04-22 13:47:35 | Deep Dive |
| CVE-2026-33596 | TCP backend stream ID overflow | PowerDNS | DNSdist | Low | 3.1 | 2026-04-22 13:47:10 | Deep Dive |
| CVE-2026-33598 | Out-of-bounds read in cache inspection via Lua | PowerDNS | DNSdist | Medium | 4.8 | 2026-04-22 13:46:46 | Deep Dive |
| CVE-2026-33599 | Out-of-bounds read in service discovery | PowerDNS | DNSdist | Low | 3.1 | 2026-04-22 13:46:05 | Deep Dive |
| CVE-2026-33602 | Off-by-one access when processing crafted UDP responses | PowerDNS | DNSdist | Medium | 6.5 | 2026-04-22 13:45:35 | Deep Dive |
| CVE-2026-33254 | Resource exhaustion via DoQ/DoH3 connections | PowerDNS | DNSdist | Medium | 5.3 | 2026-04-22 13:45:07 | Deep Dive |
| CVE-2026-33260 | Insufficient input validation of internal webserver | PowerDNS | Authoritative | Medium | 5.3 | 2026-04-22 09:39:36 | Deep Dive |
| CVE-2026-33257 | Insufficient input validation of internal webserver | PowerDNS | Authoritative | Medium | 5.3 | 2026-04-22 09:38:00 | Deep Dive |
| CVE-2026-27854 | Use after free when parsing EDNS options in Lua | PowerDNS | DNSdist | Medium | 4.8 | 2026-03-31 12:06:47 | Deep Dive |
| CVE-2026-27853 | Out-of-bounds write when rewriting large DNS packets | PowerDNS | DNSdist | Medium | 5.9 | 2026-03-31 12:04:23 | Deep Dive |
| CVE-2026-24030 | Unbounded memory allocation for DoQ and DoH3 | PowerDNS | DNSdist | Medium | 5.3 | 2026-03-31 12:01:01 | Deep Dive |
| CVE-2026-24029 | DNS over HTTPS ACL bypass | PowerDNS | DNSdist | Medium | 6.5 | 2026-03-31 11:59:13 | Deep Dive |
| CVE-2026-24028 | Out-of-bounds read when parsing DNS packets via Lua | PowerDNS | DNSdist | Medium | 5.3 | 2026-03-31 11:57:27 | Deep Dive |
| CVE-2026-0397 | Information disclosure via CORS misconfiguration | PowerDNS | DNSdist | Low | 3.1 | 2026-03-31 11:53:13 | Deep Dive |
| CVE-2026-0396 | HTML injection in the web dashboard | PowerDNS | DNSdist | Low | 3.1 | 2026-03-31 11:50:51 | Deep Dive |
| CVE-2025-30187 | Denial of service via crafted DoH exchange in PowerDNS DNSdist | PowerDNS | DNSdist | Low | 3.7 | 2025-09-18 09:21:32 | Deep Dive |
| CVE-2025-30193 | Denial of service via crafted TCP exchange | PowerDNS | DNSdist | High | 7.5 | 2025-05-20 11:17:17 | Deep Dive |