CVE-2025-71058

EPSS 0.16% · P36 Updated Apr 22, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-71058

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Dual DHCP DNS Server 8.01 improperly accepts and caches UDP DNS responses without validating that the response originates from a legitimate configured upstream DNS server. The implementation matches responses primarily by TXID and inserts results into the cache, enabling a remote attacker to inject forged responses and poison the DNS cache, potentially redirecting victims to attacker-controlled destinations.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

achaldhir Dual DHCP DNS Server 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

achaldhir Dual DHCP DNS Server是achaldhir公司的一个网络地址分配与域名解析服务软件。 achaldhir Dual DHCP DNS Server 8.01版本存在安全漏洞，该漏洞源于接受和缓存UDP DNS响应时未验证其来源，可能导致远程攻击者注入伪造响应并污染DNS缓存，从而将受害者重定向到攻击者控制的目标。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2025-71058

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2025-71058

请登录查看更多情报信息。

Same Patch Batch · n/a · 2026-04-07 · 15 CVEs total

CVE-2026-5736	7.3 HIGH	PowerJob detailPlus Endpoint InstanceController.java sql injection
CVE-2026-5739	7.3 HIGH	PowerJob OpenAPI Endpoint addWorkflowNode GroovyEvaluator.evaluate code injection
CVE-2026-31271		production_ssm 安全漏洞
CVE-2026-31272		MRCMS 安全漏洞
CVE-2026-30460		FUEL CMS 安全漏洞
CVE-2026-30079		OpenAirInterface 安全漏洞
CVE-2024-36058		Koha Library Management System 安全漏洞
CVE-2024-36057		Koha Library Management System 安全漏洞
CVE-2025-62818		Samsung多款产品安全漏洞
CVE-2025-52909		SAMSUNG多款产品安全漏洞
CVE-2025-52908		SAMSUNG多款产品安全漏洞
CVE-2025-70844		Yet Another Free Financial Application 安全漏洞
CVE-2025-69515		JXL 9 Inch Car Android Double Din Player 安全漏洞
CVE-2025-56015		GenieACS 安全漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2025-71058

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-71058

I. Basic Information for CVE-2025-71058

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2025-71058

III. Intelligence Information for CVE-2025-71058

Same Patch Batch · n/a · 2026-04-07 · 15 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2025-71058

Leave a comment