Recursor
This hub aggregates every CVE we track for Recursor, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
54
CVEs tracked
1
Critical
21
High
0
In CISA KEV
Severity distribution
MEDIUM29HIGH21LOW3CRITICAL1
Monthly trend
0
0
0
1
0
0
0
0
0
1
0
0
1
0
0
0
0
2
0
4
0
9
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Recursor.
- CVE-2026-33262Insufficient validation of cookie reply5.9
- CVE-2026-33261Null pointer accces in aggressive NSEC(3) cache5.9
- CVE-2026-33260Insufficient input validation of internal webserver5.3
- CVE-2026-33259Concurrent modification of RPZ data can lead to denial of servce5.0
- CVE-2026-33258Crafted zones can cause increased resource usage5.3
- CVE-2026-33257Insufficient input validation of internal webserver5.3
- CVE-2026-33256Unbounded memory allocation by internal web server5.3
- CVE-2026-33601Insufficient validation of zonemd record4.4
- CVE-2026-33600Null pointer dereference in RPZ transfer4.4
- CVE-2025-59024Crafted delegations or IP fragments can poison cached delegations in Recursor6.5
- CVE-2025-59023Crafted delegations or IP fragments can poison cached delegations in Recursor8.2
- CVE-2026-24027Crafted zones can lead to increased incoming network traffic5.3
- CVE-2026-0398Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor5.3
- CVE-2025-59029Internal logic flaw in cache management can lead to a denial of service in PowerDNS Recursor5.3
- CVE-2025-59030Insufficient validation of incoming notifies over TCP can lead to a denial of service in Recursor7.5
Product normalization is registry-driven with AI assist and human review. How it works