| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-33262 | Insufficient validation of cookie reply | PowerDNS | Recursor | Medium | 5.9 | 2026-04-22 09:40:24 | Deep Dive |
| CVE-2026-33261 | Null pointer accces in aggressive NSEC(3) cache | PowerDNS | Recursor | Medium | 5.9 | 2026-04-22 09:40:04 | Deep Dive |
| CVE-2026-33260 | Insufficient input validation of internal webserver | PowerDNS | Authoritative | Medium | 5.3 | 2026-04-22 09:39:36 | Deep Dive |
| CVE-2026-33259 | Concurrent modification of RPZ data can lead to denial of servce | PowerDNS | Recursor | Medium | 5.0 | 2026-04-22 09:38:52 | Deep Dive |
| CVE-2026-33258 | Crafted zones can cause increased resource usage | PowerDNS | Recursor | Medium | 5.3 | 2026-04-22 09:38:19 | Deep Dive |
| CVE-2026-33257 | Insufficient input validation of internal webserver | PowerDNS | Authoritative | Medium | 5.3 | 2026-04-22 09:38:00 | Deep Dive |
| CVE-2026-33256 | Unbounded memory allocation by internal web server | PowerDNS | Recursor | Medium | 5.3 | 2026-04-22 09:37:33 | Deep Dive |
| CVE-2026-33601 | Insufficient validation of zonemd record | PowerDNS | Recursor | Medium | 4.4 | 2026-04-22 09:37:03 | Deep Dive |
| CVE-2026-33600 | Null pointer dereference in RPZ transfer | PowerDNS | Recursor | Medium | 4.4 | 2026-04-22 09:33:12 | Deep Dive |
| CVE-2025-59024 | Crafted delegations or IP fragments can poison cached delegations in Recursor | PowerDNS | Recursor | Medium | 6.5 | 2026-02-09 14:44:29 | Deep Dive |
| CVE-2025-59023 | Crafted delegations or IP fragments can poison cached delegations in Recursor | PowerDNS | Recursor | High | 8.2 | 2026-02-09 14:44:19 | Deep Dive |
| CVE-2026-24027 | Crafted zones can lead to increased incoming network traffic | PowerDNS | Recursor | Medium | 5.3 | 2026-02-09 14:25:24 | Deep Dive |
| CVE-2026-0398 | Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor | PowerDNS | Recursor | Medium | 5.3 | 2026-02-09 14:20:47 | Deep Dive |
| CVE-2025-59029 | Internal logic flaw in cache management can lead to a denial of service in PowerDNS Recursor | PowerDNS | Recursor | Medium | 5.3 | 2025-12-09 09:16:03 | Deep Dive |
| CVE-2025-59030 | Insufficient validation of incoming notifies over TCP can lead to a denial of service in Recursor | PowerDNS | Recursor | High | 7.5 | 2025-12-09 09:15:44 | Deep Dive |
| CVE-2025-30192 | A Recursor configured to send out ECS enabled queries can be sensitive to spoofing attempts | PowerDNS | Recursor | High | 7.5 | 2025-07-21 12:49:32 | Deep Dive |
| CVE-2025-30195 | A crafted zone can lead to an illegal memory access in the PowerDNS Recursor | PowerDNS | Recursor | High | 7.5 | 2025-04-07 13:24:18 | Deep Dive |
| CVE-2024-25590 | Crafted responses can lead to a denial of service due to cache inefficiencies in the Recursor | PowerDNS | Recursor | High | 7.5 | 2024-10-03 15:29:09 | Deep Dive |
| CVE-2024-25583 | Crafted responses can lead to a denial of service in Recursor if recursive forwarding is configured | PowerDNS | Recursor | High | 7.5 | 2024-04-25 09:45:05 | Deep Dive |
| CVE-2023-26437 | Deterred spoofing attempts can lead to authoritative servers being marked unavailable | PowerDNS | Recursor | Low | 3.4 | 2023-04-04 14:37:29 | Deep Dive |