Vulnerability Description
An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V1 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would be widespread and highly impactful, because the exploitation conforms to de facto DNS specifications and operational practices, and overcomes current mitigation patches for "Ghost" domain names.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Technitium | Dns Server | <= 8.0.2 |
Related Weaknesses (CWE)
References
- https://github.com/TechnitiumSoftware/DnsServer/blob/master/CHANGELOG.md#versionRelease NotesThird Party Advisory
- https://github.com/TechnitiumSoftware/DnsServer/blob/master/CHANGELOG.md#versionRelease NotesThird Party Advisory
FAQ
What is CVE-2022-30257?
CVE-2022-30257 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V1 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including exp...
How severe is CVE-2022-30257?
CVE-2022-30257 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-30257?
Check the references section above for vendor advisories and patch information. Affected products include: Technitium Dns Server.