Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-3039

BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessive memory consumption when receiving and processing maliciously-constructed packets. Typically these servers will be found in Active Directory integrated DNS deployments and/or Kerberos-secured DNS environments. This issue affects BIND 9 versions 9.0.0 through 9.16.50, 9.18.0 through 9.18.48, 9.20.0 through 9.20.22, 9.21.0 through 9.21.21, 9.9.3-S1 through 9.16.50-S1, 9.18.11-S1 through 9.18.48-S1, and 9.20.9-S1 through 9.20.22-S1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 60.3%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2026-3039
  • Isc » Bind » Version: 9.18.0
    cpe:2.3:a:isc:bind:9.18.0
  • Isc » Bind » Version: 9.18.1
    cpe:2.3:a:isc:bind:9.18.1
  • Isc » Bind » Version: 9.18.10
    cpe:2.3:a:isc:bind:9.18.10
  • Isc » Bind » Version: 9.18.11
    cpe:2.3:a:isc:bind:9.18.11
  • Isc » Bind » Version: 9.18.18
    cpe:2.3:a:isc:bind:9.18.18
  • Isc » Bind » Version: 9.18.19
    cpe:2.3:a:isc:bind:9.18.19
  • Isc » Bind » Version: 9.18.2
    cpe:2.3:a:isc:bind:9.18.2
  • Isc » Bind » Version: 9.18.20
    cpe:2.3:a:isc:bind:9.18.20
  • Isc » Bind » Version: 9.18.21
    cpe:2.3:a:isc:bind:9.18.21
  • Isc » Bind » Version: 9.18.24
    cpe:2.3:a:isc:bind:9.18.24
  • Isc » Bind » Version: 9.18.25
    cpe:2.3:a:isc:bind:9.18.25
  • Isc » Bind » Version: 9.18.26
    cpe:2.3:a:isc:bind:9.18.26
  • Isc » Bind » Version: 9.18.27
    cpe:2.3:a:isc:bind:9.18.27
  • Isc » Bind » Version: 9.18.28
    cpe:2.3:a:isc:bind:9.18.28
  • Isc » Bind » Version: 9.18.29
    cpe:2.3:a:isc:bind:9.18.29
  • Isc » Bind » Version: 9.18.3
    cpe:2.3:a:isc:bind:9.18.3
  • Isc » Bind » Version: 9.18.30
    cpe:2.3:a:isc:bind:9.18.30
  • Isc » Bind » Version: 9.18.31
    cpe:2.3:a:isc:bind:9.18.31
  • Isc » Bind » Version: 9.18.32
    cpe:2.3:a:isc:bind:9.18.32
  • Isc » Bind » Version: 9.18.33
    cpe:2.3:a:isc:bind:9.18.33
  • Isc » Bind » Version: 9.18.34
    cpe:2.3:a:isc:bind:9.18.34
  • Isc » Bind » Version: 9.18.35
    cpe:2.3:a:isc:bind:9.18.35
  • Isc » Bind » Version: 9.18.36
    cpe:2.3:a:isc:bind:9.18.36
  • Isc » Bind » Version: 9.18.37
    cpe:2.3:a:isc:bind:9.18.37
  • Isc » Bind » Version: 9.18.38
    cpe:2.3:a:isc:bind:9.18.38
  • Isc » Bind » Version: 9.18.39
    cpe:2.3:a:isc:bind:9.18.39
  • Isc » Bind » Version: 9.18.4
    cpe:2.3:a:isc:bind:9.18.4
  • Isc » Bind » Version: 9.18.41
    cpe:2.3:a:isc:bind:9.18.41
  • Isc » Bind » Version: 9.18.42
    cpe:2.3:a:isc:bind:9.18.42
  • Isc » Bind » Version: 9.18.43
    cpe:2.3:a:isc:bind:9.18.43
  • Isc » Bind » Version: 9.18.44
    cpe:2.3:a:isc:bind:9.18.44
  • Isc » Bind » Version: 9.18.45
    cpe:2.3:a:isc:bind:9.18.45
  • Isc » Bind » Version: 9.18.46
    cpe:2.3:a:isc:bind:9.18.46
  • Isc » Bind » Version: 9.18.47
    cpe:2.3:a:isc:bind:9.18.47
  • Isc » Bind » Version: 9.18.48
    cpe:2.3:a:isc:bind:9.18.48
  • Isc » Bind » Version: 9.18.5
    cpe:2.3:a:isc:bind:9.18.5
  • Isc » Bind » Version: 9.18.6
    cpe:2.3:a:isc:bind:9.18.6
  • Isc » Bind » Version: 9.18.7
    cpe:2.3:a:isc:bind:9.18.7
  • Isc » Bind » Version: 9.18.8
    cpe:2.3:a:isc:bind:9.18.8
  • Isc » Bind » Version: 9.20.0
    cpe:2.3:a:isc:bind:9.20.0
  • Isc » Bind » Version: 9.20.1
    cpe:2.3:a:isc:bind:9.20.1
  • Isc » Bind » Version: 9.20.10
    cpe:2.3:a:isc:bind:9.20.10
  • Isc » Bind » Version: 9.20.11
    cpe:2.3:a:isc:bind:9.20.11
  • Isc » Bind » Version: 9.20.12
    cpe:2.3:a:isc:bind:9.20.12
  • Isc » Bind » Version: 9.20.13
    cpe:2.3:a:isc:bind:9.20.13
  • Isc » Bind » Version: 9.20.15
    cpe:2.3:a:isc:bind:9.20.15
  • Isc » Bind » Version: 9.20.16
    cpe:2.3:a:isc:bind:9.20.16
  • Isc » Bind » Version: 9.20.17
    cpe:2.3:a:isc:bind:9.20.17
  • Isc » Bind » Version: 9.20.18
    cpe:2.3:a:isc:bind:9.20.18
  • Isc » Bind » Version: 9.20.19
    cpe:2.3:a:isc:bind:9.20.19
  • Isc » Bind » Version: 9.20.2
    cpe:2.3:a:isc:bind:9.20.2
  • Isc » Bind » Version: 9.20.20
    cpe:2.3:a:isc:bind:9.20.20
  • Isc » Bind » Version: 9.20.21
    cpe:2.3:a:isc:bind:9.20.21
  • Isc » Bind » Version: 9.20.22
    cpe:2.3:a:isc:bind:9.20.22
  • Isc » Bind » Version: 9.20.3
    cpe:2.3:a:isc:bind:9.20.3
  • Isc » Bind » Version: 9.20.4
    cpe:2.3:a:isc:bind:9.20.4
  • Isc » Bind » Version: 9.20.5
    cpe:2.3:a:isc:bind:9.20.5
  • Isc » Bind » Version: 9.20.6
    cpe:2.3:a:isc:bind:9.20.6
  • Isc » Bind » Version: 9.20.7
    cpe:2.3:a:isc:bind:9.20.7
  • Isc » Bind » Version: 9.20.8
    cpe:2.3:a:isc:bind:9.20.8
  • Isc » Bind » Version: 9.20.9
    cpe:2.3:a:isc:bind:9.20.9


Contact Us

Shodan ® - All rights reserved