CVE-2025-30193

May 20, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-30193
Type cve
Published 2025-05-20T12:15:19
Last Seen 2025-05-20T12:21:12

CVSS Information

Base Score 7.5 (HIGH)
Attack Vector NETWORK
Attack Complexity LOW
Privileges Required NONE
User Interaction NONE
Scope UNCHANGED
Confidentiality Impact NONE
Integrity Impact NONE
Availability Impact HIGH

AI Analysis

AI Description DNSdist is vulnerable to a denial of service attack when configured to allow unlimited queries on a single TCP connection from a client. An attacker can exploit this by crafting a malicious TCP exchange, potentially causing the service to become unresponsive.
AI Severity High
Vendor PowerDNS
Product DNSdist
Affected Version

Additional Information

CVE List CVE-2025-30193
CWE List CWE-674
Bulletin Family cve

Description

In some circumstances, when DNSdist is configured to allow an unlimited number of queries on a single, incoming TCP connection from a client, an attacker can cause a denial of service by crafting a TCP exchange…

CVSS Score Summary

Base Score: %!f(string=#) (HIGH)

View Full CVE Details

πŸ’­ Join the Security Discussion

πŸ”’ Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.