CVE-2026-33611
MEDIUM4.9EPSS 0.01%Published: 4/22/2026Modified: 5/13/2026
Also known as:DEBIAN-CVE-2026-33611
Description
An operator allowed to use the REST API can cause the Authoritative server to produce invalid HTTPS or SVCB record data, which can in turn cause LMDB database corruption, if using the LMDB backend.
Affected packages (1)
- Debian/pdnsfrom 0
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.9 | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H |