VYPR

Dnsserver

by Technitium

Source repositories

CVEs (9)

  • CVE-2026-42255HigApr 26, 2026
    risk 0.47cvss 7.2epss 0.00

    Technitium DNS Server before 15.0 allows DNS traffic amplification via cyclic name server delegation.

  • CVE-2026-45557MedMay 19, 2026
    risk 0.38cvss 5.8epss 0.00

    Technitium DNS Server aggressively tries to fetch missing RRSIG records or mismatched DNSKEY records. An attacker in control of a domain can cause a vulnerable system to generate excessive network traffic. Fixed in 15.0.

  • CVE-2025-50334Jan 8, 2026
    risk 0.00cvss epss 0.01

    An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via the rate-limiting component

  • CVE-2024-56089Dec 1, 2025
    risk 0.00cvss epss 0.00

    An issue in Technitium through v13.2.2 enables attackers to conduct a DNS cache poisoning attack and inject fake responses by reviving the birthday attack.

  • CVE-2024-56946Feb 3, 2025
    risk 0.00cvss epss 0.00

    Denial of service in DNS-over-QUIC in Technitium DNS Server <= v13.2.2 allows remote attackers to permanently stop the server from accepting new DNS-over-QUIC connections by triggering unhandled exceptions in listener threads.

  • CVE-2022-48256Jan 13, 2023
    risk 0.00cvss epss 0.01

    Technitium DNS Server before 10.0 allows a self-CNAME denial-of-service attack in which a CNAME loop causes an answer to contain hundreds of records.

  • CVE-2022-30257Nov 21, 2022
    risk 0.00cvss epss 0.01

    An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V1 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would…

  • CVE-2022-30258Nov 21, 2022
    risk 0.00cvss epss 0.01

    An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V2 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would…

  • CVE-2021-43105Mar 28, 2022
    risk 0.00cvss epss 0.01

    A vulnerability in the bailiwick checking function in Technitium DNS Server <= v7.0 exists that allows specific malicious users to inject `NS` records of any domain (even TLDs) into the cache and conduct a DNS cache poisoning attack.