Low severity3.1NVD Advisory· Published Apr 22, 2026· Updated Apr 24, 2026
CVE-2026-33599
CVE-2026-33599
Description
A rogue backend can send a crafted SVCB response to a Discovery of Designated Resolvers request, when requested via either the autoUpgrade (Lua) option to newServer or auto_upgrade (YAML) settings. DDR upgrade is not enabled by default.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.