VDB
GCVE-110-ISC-2026-3593
GCVE-110-ISC-2026-3593
Advisory Published
CVE: CVE-2026-3593
Title: Heap use-after-free vulnerability in BIND 9 DNS-over-HTTPS implementation
Document version: 2.0
Posting date: 20 May 2026
Program impacted: BIND 9
Versions affected:
BIND
9.20.0 -> 9.20.22
9.21.0 -> 9.21.21
BIND Supported Preview Edition
9.20.9-S1 -> 9.20.22-S1
Versions NOT affected:
BIND
9.18.0 -> 9.18.48
BIND Supported Preview Edition
9.18.11-S1 -> 9.18.48-S1
(Versions prior to 9.18.0 and 9.18.11-S1 were not assessed.)
Severity: High
Exploitable: Remotely
Desc ...
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| ISC | BIND | — | — |
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.