High severity7.4NVD Advisory· Published Apr 22, 2026· Updated Apr 24, 2026
CVE-2026-33608
CVE-2026-33608
Description
An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update its configuration to an invalid one, leading to the backend no longer able to run on the next restart, requiring manual operation to fix it.
Affected products
1Patches
Vulnerability mechanics
References
1- docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-powerdns-2026-05.htmlnvdBroken LinkVendor Advisory
News mentions
0No linked articles in our index yet.