What is the CVSS score of CVE-2026-4890?

CVE-2026-4890 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. EPSS exploitation probability: 0.2%.

Which versions of dnsmasq are affected by CVE-2026-4890?

CVE-2026-4890 is a high-severity denial-of-service vulnerability affecting dnsmasq DNS servers that allows unauthenticated remote attackers to crash services through malicious DNSSEC packets.. A patch is available.

dnsmasq CVE-2026-4890

EUVD-2026-29152 HIGH

2026-05-11 certcc

GHSA-32px-jfgq-53xf

Denial Of Service Red Hat Suse

7.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Source Code Evidence Fetched

May 11, 2026 - 19:45 vuln.today

Analysis Generated

May 11, 2026 - 19:45 vuln.today

CVSS changed

May 11, 2026 - 19:22 NVD

7.5 (HIGH)

CVE Published

May 11, 2026 - 16:47 nvd

UNKNOWN (no severity yet)

CVE Published

May 11, 2026 - 16:47 nvd

HIGH 7.5

DescriptionNVD

A Denial of Service (DoS) vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet.

AnalysisAI

Remote unauthenticated attackers can crash dnsmasq DNS servers via crafted packets exploiting DNSSEC validation logic. The vulnerability affects dnsmasq 2.93 with CVSS 7.5 (high severity). …

RemediationAI

Within 24 hours: Identify all dnsmasq instances running version 2.93 and document their network location and criticality. Within 7 days: Apply vendor patch to dnsmasq version 2.92rel2 or later across all identified systems; verify patch deployment and service stability. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory