CNNVD-202509-2839 Information

CNNVD ID

CNNVD-202509-2839

Related CVE

CVE-2025-30187

• CNNVD Published: 2025-09-18

Description (Chinese)

DNSdist是DNSdist开源的一款高度感知 DNS、DoS 和滥用的负载均衡器。 DNSdist存在安全漏洞，该漏洞源于使用nghttp2库处理DNS over HTTPS查询时可能触发无限I/O读取循环，可能导致CPU资源过度消耗和拒绝服务攻击。

Description (English)

DNSdist is a highly sensed DNS, DoS and abused load balancer for DNSdist open source. There is a security loophole in DNSdist, which stems from the possibility that the use of the nghttp2 library for DNS over HTTPS queries could trigger an unlimited I/O reading cycle, which could lead to overconsumption of CPU resources and denial of service attacks.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

doccano

Published

2025-09-18

Last Modified

2026-02-24

References

https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2025-05.html https://vigilance.fr/vulnerability/DNSdist-overload-via-DoH-Exchange-48358 https://access.redhat.com/security/cve/cve-2025-30187