CVE-2026-33611

MEDIUM NVD

CVSS Score 6.5

Severity MEDIUM

Published Apr 22, 2026

Vendor unknown

Description

An operator allowed to use the REST API can cause the Authoritative server to produce invalid HTTPS or SVCB record data, which can in turn cause LMDB database corruption, if using the LMDB backend.

References

https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-powerdns-2026-05.html