CVE-2025-59029

Summary

An attacker can trigger an assertion failure by requesting crafted DNS records, waiting for them to be inserted into the records cache, then send a query with qtype set to ANY.

Affected Software

VendorProductVersion RangeStatus
PowerDNSRecursor5.3.0 < 5.3.2affected

Weaknesses

  • CWE-617: CWE-617 Reachable Assertion

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References