CVE-2026-42255

< 15.0

Technitium DNS Server before 15.0 allows DNS traffic amplification via cyclic name server delegation.

7.2HIGH

CVE-2025-50334

< 14.0

An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via the rate-limiting component

7.5HIGH

CVE-2024-56089

<= 13.2.2

An issue in Technitium through v13.2.2 enables attackers to conduct a DNS cache poisoning attack and inject fake responses by revi

7.5HIGH

CVE-2024-56946

< 13.3

Denial of service in DNS-over-QUIC in Technitium DNS Server <= v13.2.2 allows remote attackers to permanently stop the server from

5.3MEDIUM

CVE-2023-49203

all versions

Technitium 11.5.3 allows remote attackers to cause a denial of service (bandwidth amplification) because the DNSBomb manipulation

7.5HIGH

CVE-2023-28457

<= 11.0.3

An issue was discovered in Technitium through 11.0.3. It enables attackers to conduct a DNS cache poisoning attack and inject fake

7.5HIGH

CVE-2023-28456

<= 11.0.2

An issue was discovered in Technitium through 11.0.2. It enables attackers to launch amplification attacks (3 times more than othe

7.5HIGH

CVE-2023-28455

<= 11.0.2

An issue was discovered in Technitium through 11.0.2. The forwarding mode enables attackers to create a query loop using Technitiu

7.5HIGH

CVE-2023-28451

all versions

An issue was discovered in Technitium 11.0.2. There is a vulnerability (called BadDNS) in DNS resolving software, which triggers a

7.5HIGH

CVE-2022-48256

< 10.0

Technitium DNS Server before 10.0 allows a self-CNAME denial-of-service attack in which a CNAME loop causes an answer to contain h

7.5HIGH

CVE-2022-30258

<= 8.0.2

An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V2 of unintended domain name resolution. A revo

9.8CRITICAL

CVE-2022-30257

<= 8.0.2

An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V1 of unintended domain name resolution. A revo

9.8CRITICAL

CVE-2022-27615

< 2.2.2-5027

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in cgi component in Synology DNS Serv

7.7HIGH

CVE-2021-43105

<= 7.0

A vulnerability in the bailiwick checking function in Technitium DNS Server <= v7.0 exists that allows specific malicious users to

4.3MEDIUM

CVE-2020-8623

< 2.2.2-5027

In BIND 9.10.0 - 9.11.21, 9.12.0 - 9.16.5, 9.17.0 - 9.17.3, also affects 9.10.5-S1 - 9.11.21-S1 of the BIND 9 Supported Preview Ed

7.5HIGH

CVE-2020-8622

< 2.2.2-5028

In BIND 9.0.0 - 9.11.21, 9.12.0 - 9.16.5, 9.17.0 - 9.17.3, also affects 9.9.3-S1 - 9.11.21-S1 of the BIND 9 Supported Preview Edit

6.5MEDIUM

CVE-2020-8621

< 2.2.2-5027

In BIND 9.14.0 - 9.16.5, 9.17.0 - 9.17.3, If a server is configured with both QNAME minimization and 'forward first' then an attac

7.5HIGH

CVE-2017-12074

<= 2.2.0-3032

Directory traversal vulnerability in the SYNO.DNSServer.Zone.MasterZoneConf in Synology DNS Server before 2.2.1-3042 allows remote

6.5MEDIUM