CVE-2026-33593
Received
Received - Intake
Divide by Zero in DNSCrypt Client Causes Crash
Publication date: 2026-04-22
Last updated on: 2026-04-24
Assigner: Open-Xchange
Description
Description
A client can trigger a divide by zero error leading to crash by sending a crafted DNSCrypt query.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| powerdns | dnsdist | From 1.9.0 (inc) to 1.9.13 (exc) |
| powerdns | dnsdist | From 2.0.0 (inc) to 2.0.4 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-369 | The product divides a value by zero. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability occurs when a client sends a specially crafted DNSCrypt query that triggers a divide by zero error in the system.
This error causes the affected application or service to crash.
How can this vulnerability impact me? :
The primary impact of this vulnerability is a denial of service condition, as the divide by zero error causes the application to crash.
An attacker can exploit this vulnerability remotely without any privileges or user interaction.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70