threat
engine
.sh
Back
·
··:··
Home
/
Product
/
technitium dnsserver
Product
technitium dnsserver
18 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-42255
< 15.0
Technitium DNS Server before 15.0 allows DNS traffic amplification via cyclic name server delegation.
7.2
HIGH
CVE-2025-50334
< 14.0
An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via the rate-limiting component
7.5
HIGH
CVE-2024-56089
<= 13.2.2
An issue in Technitium through v13.2.2 enables attackers to conduct a DNS cache poisoning attack and inject fake responses by revi
7.5
HIGH
CVE-2024-56946
< 13.3
Denial of service in DNS-over-QUIC in Technitium DNS Server <= v13.2.2 allows remote attackers to permanently stop the server from
5.3
MEDIUM
CVE-2023-49203
all versions
Technitium 11.5.3 allows remote attackers to cause a denial of service (bandwidth amplification) because the DNSBomb manipulation
7.5
HIGH
CVE-2023-28457
<= 11.0.3
An issue was discovered in Technitium through 11.0.3. It enables attackers to conduct a DNS cache poisoning attack and inject fake
7.5
HIGH
CVE-2023-28456
<= 11.0.2
An issue was discovered in Technitium through 11.0.2. It enables attackers to launch amplification attacks (3 times more than othe
7.5
HIGH
CVE-2023-28455
<= 11.0.2
An issue was discovered in Technitium through 11.0.2. The forwarding mode enables attackers to create a query loop using Technitiu
7.5
HIGH
CVE-2023-28451
all versions
An issue was discovered in Technitium 11.0.2. There is a vulnerability (called BadDNS) in DNS resolving software, which triggers a
7.5
HIGH
CVE-2022-48256
< 10.0
Technitium DNS Server before 10.0 allows a self-CNAME denial-of-service attack in which a CNAME loop causes an answer to contain h
7.5
HIGH
CVE-2022-30258
<= 8.0.2
An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V2 of unintended domain name resolution. A revo
9.8
CRITICAL
CVE-2022-30257
<= 8.0.2
An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V1 of unintended domain name resolution. A revo
9.8
CRITICAL
CVE-2022-27615
< 2.2.2-5027
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in cgi component in Synology DNS Serv
7.7
HIGH
CVE-2021-43105
<= 7.0
A vulnerability in the bailiwick checking function in Technitium DNS Server <= v7.0 exists that allows specific malicious users to
4.3
MEDIUM
CVE-2020-8623
< 2.2.2-5027
In BIND 9.10.0 - 9.11.21, 9.12.0 - 9.16.5, 9.17.0 - 9.17.3, also affects 9.10.5-S1 - 9.11.21-S1 of the BIND 9 Supported Preview Ed
7.5
HIGH
CVE-2020-8622
< 2.2.2-5028
In BIND 9.0.0 - 9.11.21, 9.12.0 - 9.16.5, 9.17.0 - 9.17.3, also affects 9.9.3-S1 - 9.11.21-S1 of the BIND 9 Supported Preview Edit
6.5
MEDIUM
CVE-2020-8621
< 2.2.2-5027
In BIND 9.14.0 - 9.16.5, 9.17.0 - 9.17.3, If a server is configured with both QNAME minimization and 'forward first' then an attac
7.5
HIGH
CVE-2017-12074
<= 2.2.0-3032
Directory traversal vulnerability in the SYNO.DNSServer.Zone.MasterZoneConf in Synology DNS Server before 2.2.1-3042 allows remote
6.5
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin