VDB

GCVE-110-ISC-2026-3593

GCVE-110-ISC-2026-3593
Advisory Published
Vulnetix · Advisory published May 20, 2026
CVE: CVE-2026-3593 Title: Heap use-after-free vulnerability in BIND 9 DNS-over-HTTPS implementation Document version: 2.0 Posting date: 20 May 2026 Program impacted: BIND 9 Versions affected: BIND 9.20.0 -> 9.20.22 9.21.0 -> 9.21.21 BIND Supported Preview Edition 9.20.9-S1 -> 9.20.22-S1 Versions NOT affected: BIND 9.18.0 -> 9.18.48 BIND Supported Preview Edition 9.18.11-S1 -> 9.18.48-S1 (Versions prior to 9.18.0 and 9.18.11-S1 were not assessed.) Severity: High Exploitable: Remotely Desc ...

Affected Products

VendorProductVersionsPlatforms
ISCBIND

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›