What is CVE-2026-33608?

CVE-2026-33608 is a high-severity vulnerability in Powerdns Authoritative. CVSS score: 7.4/10. Published 2026-04-22.

How severe is CVE-2026-33608?

High severity. CVSS v3 base score is 7.4 out of 10.

Vulnerability in Powerdns Authoritative

CVE-2026-33608

An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update its configuration to an invalid one, leading to the backend no longer able to run on the next resta…

EPSS: 0.000 (0.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.4 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H.

Affected products

Powerdns Authoritative — versions 5.0.0, 4.9.0

References

docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-powerdns-…

Frequently asked questions

What is CVE-2026-33608?: CVE-2026-33608 is a high-severity vulnerability in Powerdns Authoritative. CVSS score: 7.4/10. Published 2026-04-22.
How severe is CVE-2026-33608?: High severity. CVSS v3 base score is 7.4 out of 10.