CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-5947

Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIND receives an incoming DNS message signed with SIG(0), it begins work to validate that signature. If, during that validation, the "recursive-clients" limit is reached (as would occur during a query flood), and that same DNS message is discarded per the limit, there is a brief window of time while the SIG(0) validation may attempt to read the now-discarded DNS message. This issue affects BIND 9 versions 9.20.0 through 9.20.22, 9.21.0 through 9.21.21, and 9.20.9-S1 through 9.20.22-S1. BIND 9 versions 9.18.28 through 9.18.49 and 9.18.28-S1 through 9.18.49-S1 are NOT affected.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 13.7%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2026-5947

Isc » Bind » Version: 9.20.0

cpe:2.3:a:isc:bind:9.20.0
Isc » Bind » Version: 9.20.1

cpe:2.3:a:isc:bind:9.20.1
Isc » Bind » Version: 9.20.10

cpe:2.3:a:isc:bind:9.20.10
Isc » Bind » Version: 9.20.11

cpe:2.3:a:isc:bind:9.20.11
Isc » Bind » Version: 9.20.12

cpe:2.3:a:isc:bind:9.20.12
Isc » Bind » Version: 9.20.13

cpe:2.3:a:isc:bind:9.20.13
Isc » Bind » Version: 9.20.15

cpe:2.3:a:isc:bind:9.20.15
Isc » Bind » Version: 9.20.16

cpe:2.3:a:isc:bind:9.20.16
Isc » Bind » Version: 9.20.17

cpe:2.3:a:isc:bind:9.20.17
Isc » Bind » Version: 9.20.18

cpe:2.3:a:isc:bind:9.20.18
Isc » Bind » Version: 9.20.19

cpe:2.3:a:isc:bind:9.20.19
Isc » Bind » Version: 9.20.2

cpe:2.3:a:isc:bind:9.20.2
Isc » Bind » Version: 9.20.20

cpe:2.3:a:isc:bind:9.20.20
Isc » Bind » Version: 9.20.21

cpe:2.3:a:isc:bind:9.20.21
Isc » Bind » Version: 9.20.22

cpe:2.3:a:isc:bind:9.20.22
Isc » Bind » Version: 9.20.3

cpe:2.3:a:isc:bind:9.20.3
Isc » Bind » Version: 9.20.4

cpe:2.3:a:isc:bind:9.20.4
Isc » Bind » Version: 9.20.5

cpe:2.3:a:isc:bind:9.20.5
Isc » Bind » Version: 9.20.6

cpe:2.3:a:isc:bind:9.20.6
Isc » Bind » Version: 9.20.7

cpe:2.3:a:isc:bind:9.20.7
Isc » Bind » Version: 9.20.8

cpe:2.3:a:isc:bind:9.20.8
Isc » Bind » Version: 9.20.9

cpe:2.3:a:isc:bind:9.20.9
Isc » Bind » Version: 9.21.0

cpe:2.3:a:isc:bind:9.21.0
Isc » Bind » Version: 9.21.1

cpe:2.3:a:isc:bind:9.21.1
Isc » Bind » Version: 9.21.10

cpe:2.3:a:isc:bind:9.21.10
Isc » Bind » Version: 9.21.11

cpe:2.3:a:isc:bind:9.21.11
Isc » Bind » Version: 9.21.12

cpe:2.3:a:isc:bind:9.21.12
Isc » Bind » Version: 9.21.14

cpe:2.3:a:isc:bind:9.21.14
Isc » Bind » Version: 9.21.15

cpe:2.3:a:isc:bind:9.21.15
Isc » Bind » Version: 9.21.16

cpe:2.3:a:isc:bind:9.21.16
Isc » Bind » Version: 9.21.17

cpe:2.3:a:isc:bind:9.21.17
Isc » Bind » Version: 9.21.18

cpe:2.3:a:isc:bind:9.21.18
Isc » Bind » Version: 9.21.19

cpe:2.3:a:isc:bind:9.21.19
Isc » Bind » Version: 9.21.2

cpe:2.3:a:isc:bind:9.21.2
Isc » Bind » Version: 9.21.20

cpe:2.3:a:isc:bind:9.21.20
Isc » Bind » Version: 9.21.21

cpe:2.3:a:isc:bind:9.21.21
Isc » Bind » Version: 9.21.3

cpe:2.3:a:isc:bind:9.21.3
Isc » Bind » Version: 9.21.4

cpe:2.3:a:isc:bind:9.21.4
Isc » Bind » Version: 9.21.5

cpe:2.3:a:isc:bind:9.21.5
Isc » Bind » Version: 9.21.6

cpe:2.3:a:isc:bind:9.21.6
Isc » Bind » Version: 9.21.7

cpe:2.3:a:isc:bind:9.21.7
Isc » Bind » Version: 9.21.8

cpe:2.3:a:isc:bind:9.21.8
Isc » Bind » Version: 9.21.9

cpe:2.3:a:isc:bind:9.21.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-5947

Products

Pricing

Contact Us