Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

coredns — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting coredns. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CoreDNS serves as a flexible DNS server and proxy, widely used in Kubernetes environments for service discovery and DNS resolution. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation and insecure default configurations. While no major public incidents have been widely documented, the 10 recorded CVEs highlight potential risks in plugin handling and memory management. Security characteristics include a modular plugin architecture that can introduce attack surfaces, though regular updates and proper configuration mitigate many threats. The project maintains a responsive security team, but administrators should remain vigilant about plugin dependencies and access controls to prevent exploitation.

Top products by coredns: coredns
CVE IDTitleCVSSSeverityPublished
CVE-2026-35579 CoreDNS TSIG authentication bypass on gRPC, QUIC, DoH, and DoH3 transports — corednsCWE-287 7.4 -2026-05-05
CVE-2026-33489 CoreDNS transfer plugin subzone ACL bypass via lexicographic zone comparison — corednsCWE-863 7.5 -2026-05-05
CVE-2026-32936 CoreDNS DoH GET path missing size validation causes CPU and memory amplification — corednsCWE-400 7.5 -2026-05-05
CVE-2026-32934 CoreDNS DNS-over-QUIC unbounded goroutine growth leads to denial of service — corednsCWE-770 7.5 -2026-05-05
CVE-2026-33190 CoreDNS TSIG authentication bypass on encrypted DNS transports — corednsCWE-303 7.4 -2026-05-05
CVE-2026-26017 CoreDNS ACL Bypass — corednsCWE-367 7.7 High2026-03-06
CVE-2026-26018 CoreDNS Loop Detection Denial of Service Vulnerability — corednsCWE-337 7.5 High2026-03-06
CVE-2025-68151 CoreDNS gRPC/HTTPS/HTTP3 servers lack resource limits, enabling DoS via unbounded connections and oversized messages — corednsCWE-770 7.5 -2026-01-08
CVE-2025-58063 CoreDNS: DNS Cache Pinning via etcd Lease ID Confusion — corednsCWE-681 7.1 High2025-09-09
CVE-2025-47950 CoreDNS Vulnerable to DoQ Memory Exhaustion via Stream Amplification — corednsCWE-770 7.5 High2025-06-06

This page lists every published CVE security advisory associated with coredns. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.