CVE-2026-12246 | NSD version 4.14.0 introduced a bug where a specially crafte… | CVSS 7.2 HIGH

Description

NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted for the address family will overwrite the stack when the zone is written to disk, with a maximum of 111 attacker controlled bytes.

Metadata

CVE ID: CVE-2026-12246
State: PUBLISHED
Assigner: NLnet Labs
Reserved: 2026-06-15 06:47 UTC
Published: 2026-06-25 05:24 UTC
Last updated: 2026-06-25 05:24 UTC
Primary CWE: CWE-120
CWE-120: Buffer Copy without Checking Size of Input
Vendor / Product: NLnet Labs / NSD
Sources: cve.org · NVD

Severity & Metrics

7.2 HIGH CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

Affected products (1)

Vendor	Product	Platform	Versions
NLnet Labs	NSD	—	4.14.0 < 4.14.3

Weakness (CWE)

CWE	Source	Description
CWE-120	cna	CWE-120: Buffer Copy without Checking Size of Input
CWE-20	cna	CWE-20: Improper Input Validation

CVSS scores (1)

Score	Severity	Version	Source	Vector
7.2	HIGH	4.0	cna	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

References (1)

https://www.nlnetlabs.nl/downloads/nsd/CVE-2026-12246.txt