CVE-2026-5172
CVE-2026-5172
Vexday Risk Score
41Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS 7.3EPSS 0.9%KEV nãoPoC públicaNuclei —Metasploit —Patch referenciado
Lifecycle
11 May 2026Published on NVD
27 May 2026Public PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
A buffer overflow in dnsmasq’s extract_addresses() function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting a malformed DNS response, enabling extract_name() to advance the pointer past the record’s end.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Affected products
dnsmasq · dnsmasqpublic PoCs found — 1
githubgithub.com/lottiedeyan/CVE20265172poc★ 0⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://access.redhat.com/errata/RHSA-2026:19158https://access.redhat.com/security/cve/CVE-2026-5172https://bugzilla.redhat.com/show_bug.cgi?id=2458521https://github.com/NixOS/nixpkgs/pull/519082https://github.com/NixOS/nixpkgs/pull/519093https://github.com/pi-hole/FTL/releases/tag/v6.6.2https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2026q2/018471.htmlhttps://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-5172.jsonhttps://thekelleys.org.uk/dnsmasq/CVE/https://www.kb.cert.org/vuls/id/471747