Lucene search
K
TechnitiumDns Server

4 matches found

CVE
CVE
added 2022/03/28 10:2 p.m.83 views

CVE-2021-43105

Technitium DNS Server vulnerabilities: A bailiwick checking function flaw in versions ≤ 7.0 allows malicious users to inject NS records of any domain (even TLDs) into the cache, enabling DNS cache poisoning. The PT-2022-11786 entry and CNNVD/CVE references corroborate this, stating the impact as ...

4.3CVSS4.6AI score0.00599EPSS
CVE
CVE
added 2022/11/21 12:0 a.m.75 views

CVE-2022-30257

The CVE-2022-30257 entry affects Technitium DNS Server (versions through 8.0.2). Concrete details from connected sources show a flaw where variant V1 allows unintended domain name resolution: a revoked domain name can remain resolvable for an extended period, including expired or taken-down domai...

9.8CVSS9.2AI score0.00671EPSS
CVE
CVE
added 2022/11/21 12:0 a.m.60 views

CVE-2022-30258

Technitium DNS Server (v8.0.2 and earlier) is affected by CVE-2022-30258, which enables variant V2 of unintended domain name resolution where revoked domains remain resolvable for extended periods, including expired or withdrawn domains. This behavior conforms to de facto DNS practices and can le...

9.8CVSS9.2AI score0.00671EPSS
CVE
CVE
added 2023/01/13 12:0 a.m.50 views

CVE-2022-48256

Summary: CVE-2022-48256 affects Technitium DNS Server versions prior to 10.0. A self-CNAME loop in the DNS response can cause the answer to contain hundreds of records, leading to a denial of service (availability impact). The issue is triggered by the CNAME handling logic and results in resource...

7.5CVSS7.4AI score0.00689EPSS