CVE-2022-30257
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2022-30257
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V1 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would be widespread and highly impactful, because the exploitation conforms to de facto DNS specifications and operational practices, and overcomes current mitigation patches for "Ghost" domain names.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Technitium DNS Server 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Technitium DNS Server是Technitium团队的一个开源的权威和递归 DNS 服务器。可用于自托管 DNS 服务器以保护隐私和安全。 Technitium DNS Server 8.0.2版本存在安全漏洞,该漏洞源于允许意外域名解析的变体 V1, 被撤销的域名在很长一段时间内仍然可以解析,包括过期域名和被撤下的恶意域名。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2022-30257
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2022-30257
请登录查看更多情报信息。
Same Patch Batch · n/a · 2022-11-21 · 42 CVEs total
| CVE-2022-44788 | Maggioli SpA Appalti & Contratti 授权问题漏洞 | |
| CVE-2022-44175 | Tenda AC18 安全漏洞 | |
| CVE-2022-44176 | Tenda AC18 安全漏洞 | |
| CVE-2022-44177 | Tenda AC18 安全漏洞 | |
| CVE-2022-44178 | Tenda AC18 安全漏洞 | |
| CVE-2022-44180 | Tenda AC18 安全漏洞 | |
| CVE-2022-44183 | Tenda AC18 安全漏洞 | |
| CVE-2022-44784 | Maggioli SpA Appalti & Contratti 安全漏洞 | |
| CVE-2022-44785 | Maggioli SpA Appalti & Contratti SQL注入漏洞 | |
| CVE-2022-44786 | Maggioli SpA Appalti & Contratti 安全漏洞 | |
| CVE-2022-44787 | Maggioli SpA Appalti & Contratti 跨站脚本漏洞 | |
| CVE-2022-44174 | Tenda AC18 安全漏洞 | |
| CVE-2022-44830 | Event Registration App 安全漏洞 | |
| CVE-2022-45012 | WBCE CMS 跨站脚本漏洞 | |
| CVE-2022-45013 | WBCE CMS 跨站脚本漏洞 | |
| CVE-2022-45014 | WBCE CMS 跨站脚本漏洞 | |
| CVE-2022-45015 | WBCE CMS 跨站脚本漏洞 | |
| CVE-2022-45016 | WBCE CMS 跨站脚本漏洞 | |
| CVE-2022-45017 | WBCE CMS 跨站脚本漏洞 | |
| CVE-2022-45146 | Bouncy Castle BC 资源管理错误漏洞 |
Showing top 20 of 42 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2022-30257
No comments yet