Dnsserver
by Technitium
Source repositories
CVEs (9)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-42255 | Hig | 0.47 | 7.2 | 0.00 | Apr 26, 2026 | Technitium DNS Server before 15.0 allows DNS traffic amplification via cyclic name server delegation. | ||
| CVE-2026-45557 | Med | 0.38 | 5.8 | 0.00 | May 19, 2026 | Technitium DNS Server aggressively tries to fetch missing RRSIG records or mismatched DNSKEY records. An attacker in control of a domain can cause a vulnerable system to generate excessive network traffic. Fixed in 15.0. | ||
| CVE-2025-50334 | 0.00 | — | 0.01 | Jan 8, 2026 | An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via the rate-limiting component | |||
| CVE-2024-56089 | 0.00 | — | 0.00 | Dec 1, 2025 | An issue in Technitium through v13.2.2 enables attackers to conduct a DNS cache poisoning attack and inject fake responses by reviving the birthday attack. | |||
| CVE-2024-56946 | 0.00 | — | 0.00 | Feb 3, 2025 | Denial of service in DNS-over-QUIC in Technitium DNS Server <= v13.2.2 allows remote attackers to permanently stop the server from accepting new DNS-over-QUIC connections by triggering unhandled exceptions in listener threads. | |||
| CVE-2022-48256 | 0.00 | — | 0.01 | Jan 13, 2023 | Technitium DNS Server before 10.0 allows a self-CNAME denial-of-service attack in which a CNAME loop causes an answer to contain hundreds of records. | |||
| CVE-2022-30257 | 0.00 | — | 0.01 | Nov 21, 2022 | An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V1 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would… | |||
| CVE-2022-30258 | 0.00 | — | 0.01 | Nov 21, 2022 | An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V2 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would… | |||
| CVE-2021-43105 | 0.00 | — | 0.01 | Mar 28, 2022 | A vulnerability in the bailiwick checking function in Technitium DNS Server <= v7.0 exists that allows specific malicious users to inject `NS` records of any domain (even TLDs) into the cache and conduct a DNS cache poisoning attack. |
- risk 0.47cvss 7.2epss 0.00
Technitium DNS Server before 15.0 allows DNS traffic amplification via cyclic name server delegation.
- risk 0.38cvss 5.8epss 0.00
Technitium DNS Server aggressively tries to fetch missing RRSIG records or mismatched DNSKEY records. An attacker in control of a domain can cause a vulnerable system to generate excessive network traffic. Fixed in 15.0.
- CVE-2025-50334Jan 8, 2026risk 0.00cvss —epss 0.01
An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via the rate-limiting component
- CVE-2024-56089Dec 1, 2025risk 0.00cvss —epss 0.00
An issue in Technitium through v13.2.2 enables attackers to conduct a DNS cache poisoning attack and inject fake responses by reviving the birthday attack.
- CVE-2024-56946Feb 3, 2025risk 0.00cvss —epss 0.00
Denial of service in DNS-over-QUIC in Technitium DNS Server <= v13.2.2 allows remote attackers to permanently stop the server from accepting new DNS-over-QUIC connections by triggering unhandled exceptions in listener threads.
- CVE-2022-48256Jan 13, 2023risk 0.00cvss —epss 0.01
Technitium DNS Server before 10.0 allows a self-CNAME denial-of-service attack in which a CNAME loop causes an answer to contain hundreds of records.
- CVE-2022-30257Nov 21, 2022risk 0.00cvss —epss 0.01
An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V1 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would…
- CVE-2022-30258Nov 21, 2022risk 0.00cvss —epss 0.01
An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V2 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would…
- CVE-2021-43105Mar 28, 2022risk 0.00cvss —epss 0.01
A vulnerability in the bailiwick checking function in Technitium DNS Server <= v7.0 exists that allows specific malicious users to inject `NS` records of any domain (even TLDs) into the cache and conduct a DNS cache poisoning attack.