CVE-2026-24028 Powerdns — Exploit & Vulnerability Details MEDIUM

CVE-2026-24028

MEDIUM CVSS 3.1: 5.3 EPSS 0.01%

Parameter	Value
CVSS	5.3 (MEDIUM)
Type	CWE-126
Vendor	Powerdns
Public PoC	No

An attacker might be able to trigger an out-of-bounds read by sending a crafted DNS response packet, when custom Lua code uses newDNSPacketOverlay to parse DNS packets. The out-of-bounds read might trigger a crash, leading to a denial of service, or access unrelated memory, leading to potential information disclosure.

Attack Parameters

Attack Vector

Network

Can be exploited remotely

Attack Complexity

Low

Easy to exploit

Privileges Required

None

No privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

None

No data leak

Integrity

None

No data modification

Availability

Low

Partial disruption

CVSS Vector v3.1

Weakness Type (CWE)

CWE-126

Vulnerable Products

powerdns:dnsdist

References 1

https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2026-…

security@open-xchange.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-27854

Powerdns

4.8

CVE-2026-27853

Powerdns

5.9

CVE-2026-24030

Powerdns

5.3

CVE-2026-24029

Powerdns

6.5

CVE-2026-0397

Powerdns

3.1

Menu

CVE-2026-24028

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

Vulnerable Products

References 1

Related Vulnerabilities

CVE-2026-27854

CVE-2026-27853

CVE-2026-24030

CVE-2026-24029

CVE-2026-0397

CVE Details

Editor's Choice

Menu

CVE-2026-24028

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

Vulnerable Products

References 1

Related Vulnerabilities

CVE-2026-27854

CVE-2026-27853

CVE-2026-24030

CVE-2026-24029

CVE-2026-0397

CVE Details

Editor's Choice

Stay informed on cybersecurity