Lucene search
K

10 matches found

CVE
CVE
added 2026/06/25 12:23 p.m.13 views

CVE-2026-40211

Technical details about CVE-2026-40211 are not publicly available in the provided documents. Monitor for updates.

5.3CVSS6.1AI score0.00413EPSS
Exploits0References1
CVE
CVE
added 2026/05/05 8:29 p.m.49 views

CVE-2026-35579

CoreDNS versions prior to 1.14.3 expose a TSIG authentication bypass on gRPC, QUIC, DoH, and DoH3 transports. In gRPC/QUIC, the server checks for a configured TSIG key name but never calls dns.TsigVerify(), so a matching key yields a nil tsigStatus and the request is treated as authenticated rega...

9.8CVSS5.8AI score0.0051EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2026/04/28 10:46 p.m.4 views

GHSA-QHMP-Q7XH-99RH CoreDNS has TSIG authentication bypass on DoT, DoH, DoH3, DoQ, and gRPC

Summary CoreDNS' tsig plugin can be bypassed on non-plain-DNS transports because it trusts the transport writer's TsigStatus instead of performing verification itself. In the attached PoC, plain DNS/TCP correctly rejects an invalid TSIG NOTAUTH, while the same invalid-TSIG request is accepted ove...

8.7CVSS5.8AI score0.00374EPSS
Exploits1References4
OSV
OSV
added 2026/03/31 12:16 p.m.3 views

UBUNTU-CVE-2026-24030

An attacker might be able to trick DNSdist into allocating too much memory while processing DNS over QUIC or DNS over HTTP/3 payloads, resulting in a denial of service. In setups with a large quantity of memory available this usually results in an exception and the QUIC connection is properly...

7.5CVSS5.8AI score0.00537EPSS
Exploits0References4
CVE
CVE
added 2026/03/31 12:1 p.m.14 views

CVE-2026-24030

DNSdist (DNS load balancer) has a vulnerability CVE-2026-24030 where processing DNS over QUIC or DNS over HTTP/3 payloads may allocate unbounded memory, potentially causing denial of service and, in some cases, an out-of-memory state. Debian’s advisory notes a fix in dnsdist for stable (trixie) v...

7.5CVSS5.9AI score0.00537EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/31 12:1 p.m.22 views

CVE-2026-24030 Unbounded memory allocation for DoQ and DoH3

An attacker might be able to trick DNSdist into allocating too much memory while processing DNS over QUIC or DNS over HTTP/3 payloads, resulting in a denial of service. In setups with a large quantity of memory available this usually results in an exception and the QUIC connection is properly...

5.3CVSS0.00537EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2026/03/31 12:0 a.m.5 views

DNSdist -- vulnerabilities

https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2026-02.html reports: CVE-2026-0396: HTML injection in the web dashboard CVE-2026-0397: Information disclosure via CORS misconfiguration CVE-2026-24028: Out-of-bounds read when parsing DNS packets via Lua CVE-2026-24029: DN...

8.2CVSS5.8AI score0.01028EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.6 views

PT-2025-38305

Name of the Vulnerable Software and Affected Versions DNSdist affected versions not specified Description DNSdist, when configured to utilize the nghttp2 library for processing DNS over HTTPS DoH queries, may be susceptible to a denial of service. A crafted DoH exchange can trigger an unbounded I...

7.5CVSS8.3AI score0.04604EPSS
Exploits3References26
The Hacker News
The Hacker News
added 2022/07/20 1:41 p.m.33 views

Google Adds Support for DNS-over-HTTP/3 in Android to Keep DNS Queries Private — The Hacker News

Google on Tuesday officially announced support for DNS-over-HTTP/3 DoH3 for Android devices as part of a Google Play system update designed to keep DNS queries private. To that end, Android smartphones running Android 11 and higher are expected to use DoH3 instead of DNS-over-TLS DoT, which was...

7.2AI score
Exploits0
Hacker One
Hacker One
added 2019/09/13 2:9 p.m.24 views

curl: Buffer write overflow when forming dns over http request

Summary: If dns over http is used, the hostname to look up is packed into a buffer to send to the dns server using the dohencode function from the doh.c source file. By default, curl uses a 512 byte buffer. For that length, the buffer may be overflowed with one byte, which is set to 1. Note that...

7.4AI score
Exploits0
Rows per page
Query Builder