CVE-2026-1519

216.73.216.6

· Published 25/03/2026 14:16 · Modified 25/03/2026 15:41

Labels: CVE-2026-1519 2026-03-25 CVE-2026-1519 CWE-606 [email protected]

Essential information

Published: 25/03/2026 14:16
Modified: 25/03/2026 15:41
Author: —
Creator: —
CVSS: 7.5 HIGH (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS metrics

Description

If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excessive CPU. Authoritative-only servers are generally unaffected, although there are circumstances where authoritative servers may make recursive queries (see: https://kb.isc.org/docs/why-does-my-authoritative-server-make-recursive-queries). This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.46, 9.20.0 through 9.20.20, 9.21.0 through 9.21.19, 9.11.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.46-S1, and 9.20.9-S1 through 9.20.20-S1.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
isc / bind	`cpe:2.3:a:isc:bind:9.11.0-9.16.50:::::::*`
isc / bind	`cpe:2.3:a:isc:bind:9.18.0-9.18.46:::::::*`
isc / bind	`cpe:2.3:a:isc:bind:9.20.0-9.20.20:::::::*`
isc / bind	`cpe:2.3:a:isc:bind:9.21.0-9.21.19:::::::*`
isc / bind	`cpe:2.3:a:isc:bind:9.11.3-S1-9.16.50-S1:::::::*`
isc / bind	`cpe:2.3:a:isc:bind:9.18.11-S1-9.18.46-S1:::::::*`
isc / bind	`cpe:2.3:a:isc:bind:9.20.9-S1-9.20.20-S1:::::::*`