CVE-2026-42001PATCHED

isc · bind

Insufficient Validation of Autoprimary SOA Queries

Description

Affected Products

Vendor	Product	Versions
isc	bind	4.9.0, 5.0.0

Also Affects

Downstream vendors/products affected by this vulnerability

Vendor	Product	Source	Confidence
open source	powerdns	cert_advisory	90%

References

https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-powerdns-2026-06.html

Related News (2 articles)

Tier C

VulDB5d ago

CVE-2026-42001 | PowerDNS Authoritative up to 4.9.14/5.0.4 Autoprimary SOA Query denial of service (Nessus ID 315941)

→ No new info (linked only)

Tier B

BSI Advisories5d ago

[NEU] [mittel] PowerDNS Authoritative Server: Mehrere Schwachstellen

→ No new info (linked only)

CVSS 3.17.5 HIGH

VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA KEV❌ No

Actively exploited❌ No

Patch available

4.9.155.0.5

PublishedMay 21, 2026

Last enriched5d agov2

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-1519

Excessive NSEC3 iterations cause high CPU load during insecure delegation validation

Trending: 53

HIGHCVE-2026-5946EXP

Invalid handling of CLASS != IN

Trending: 50

HIGHCVE-2026-5947EXP

SIG(0) validation during query flood may lead to undefined behavior

Trending: 48

MEDIUMCVE-2026-3592EXP

Amplification vulnerabilities via self-pointed glue records

Trending: 45

MEDIUMCVE-2026-5950EXP

Unbounded resend loop in BIND 9 resolver

Trending: 45

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

May 21, 2026

Discovered by ZDM

May 21, 2026

Updated: affectedVersions, severity, tags

May 21, 2026

Patch Available

May 21, 2026

Version History

Last enriched 5d ago

v2Tier C5d ago

Updated affected versions to include 4.9.14 and 5.0.4, changed severity to MEDIUM, and noted that no exploit is available.

affectedVersionsseveritytags

via VulDB

v15d ago

Initial creation