TechnitiumSoftware/DnsServer

TechnitiumSoftware/DnsServer

Releases30

Frequency1 month 1 day

Last Release 26 days ago

Stars8.73K

Technitium DNS Server

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-45557 ↗	May 19, 2026Tuesday, 19 May 2026, 15:16	5.8 MEDIUM	—
Technitium DNS Server aggressively tries to fetch missing RRSIG records or mismatched DNSKEY records. An attacker in control of a domain can cause a vulnerable system to generate excessive network traffic. Fixed in 15.0.
CVE-2026-42255 ↗	Apr 26, 2026Sunday, 26 April 2026, 04:16	7.2 HIGH	—
Technitium DNS Server before 15.0 allows DNS traffic amplification via cyclic name server delegation.
CVE-2025-50334 ↗	Jan 8, 2026Thursday, 8 January 2026, 17:15	7.5 HIGH	—
An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via the rate-limiting component
CVE-2024-56089 ↗	Dec 1, 2025Monday, 1 December 2025, 15:15	7.5 HIGH	—
An issue in Technitium through v13.2.2 enables attackers to conduct a DNS cache poisoning attack and inject fake responses by reviving the birthday attack.
CVE-2024-33655 ↗	Jun 6, 2024Thursday, 6 June 2024, 17:15	7.5 HIGH	—
The DNS protocol in RFC 1035 and updates allows remote attackers to cause a denial of service (resource consumption) by arranging for DNS queries to be accumulated for seconds, such that responses are later sent in a pulsing burst (which can be considered traffic amplification in some cases), aka the "DNSBomb" issue.
CVE-2022-48256 ↗	Jan 13, 2023Friday, 13 January 2023, 01:15	7.5 HIGH	—
Technitium DNS Server before 10.0 allows a self-CNAME denial-of-service attack in which a CNAME loop causes an answer to contain hundreds of records.
CVE-2022-30258 ↗	Nov 21, 2022Monday, 21 November 2022, 22:15	9.8 CRITICAL	—
An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V2 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would be widespread and highly impactful, because the exploitation conforms to de facto DNS specifications and operational practices, and overcomes current mitigation patches for "Ghost" domain names.
CVE-2022-30257 ↗	Nov 21, 2022Monday, 21 November 2022, 22:15	9.8 CRITICAL	—
An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V1 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would be widespread and highly impactful, because the exploitation conforms to de facto DNS specifications and operational practices, and overcomes current mitigation patches for "Ghost" domain names.
CVE-2021-43105 ↗	Mar 28, 2022Monday, 28 March 2022, 23:15	4.3 MEDIUM	4 MEDIUM
A vulnerability in the bailiwick checking function in Technitium DNS Server <= v7.0 exists that allows specific malicious users to inject `NS` records of any domain (even TLDs) into the cache and conduct a DNS cache poisoning attack.