Skip to main content

Hickory Dns

1 CVEs product

Monthly

CVE-2026-42254 Cargo MEDIUM PATCH This Month

Hickory DNS recursor versions 0.1 through 0.25.2 allow cross-zone DNS poisoning attacks due to cached DNS responses not being directly associated with the query that triggered them, enabling attackers to inject malicious DNS records across zone boundaries and potentially redirect traffic to attacker-controlled servers without user interaction or authentication.

Information Disclosure Hickory Dns
NVD GitHub VulDB
CVSS 3.1
4.0
EPSS
0.0%
EPSS 0% CVSS 4.0
MEDIUM PATCH This Month

Hickory DNS recursor versions 0.1 through 0.25.2 allow cross-zone DNS poisoning attacks due to cached DNS responses not being directly associated with the query that triggered them, enabling attackers to inject malicious DNS records across zone boundaries and potentially redirect traffic to attacker-controlled servers without user interaction or authentication.

Information Disclosure Hickory Dns
NVD GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy