CVE-2026-28810: Predictable DNS Transaction IDs Enable Cache Poisoning in Built-in Resolver

Overview

Severity

N/A

Exploit Status

Not Exploited

Patch Tuesday

2026-Apr

Released

2026-04-11

EPSS Score

0.07% (percentile: 20.5%)

Affected Products (2)

Other

• 21093-17086

Open Source Software

• azl3 kernel 6.6.130.1-3 on Azure Linux 3.0

Revision History

• 2026-04-11: Information published.