Multiple Vulnerabilities in CoreDNS Allow Security Bypass and Denial of Service

72% confidence

Description

An attacker can exploit multiple vulnerabilities in CoreDNS to bypass security measures and disclose confidential information or cause a denial of service.

Affected Products

Vendor	Product	Versions
CoreDNS	coredns	—

Related News (2 articles)

Tier B

BSI Advisories1h ago

[NEU] [mittel] CoreDNS: Mehrere Schwachstellen ermöglichen

→ No new info (linked only)

Tier B

BSI Advisories4h ago

[UPDATE] [mittel] CoreDNS: Mehrere Schwachstellen

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

PublishedApr 27, 2026

Last enriched1h agov2

Community Vote

0 upvotes0 downvotes

No votes yet

Vulnerability Timeline

CVE Published

Apr 27, 2026

Actively Exploited

Apr 27, 2026

Exploit Available

Apr 27, 2026

Discovered by ZDM

Apr 27, 2026

Updated: vendor, severity, exploitAvailable, activelyExploited, description

Apr 27, 2026

Version History

Last enriched 1h ago

v2Tier B1h ago

Updated vendor to CoreDNS, changed severity to HIGH, marked exploit as available and actively exploited, and added details about information disclosure in the description.

vendorseverityexploitAvailableactivelyExploiteddescription

via BSI Advisories

v13h ago

Initial creation

Multiple Vulnerabilities in CoreDNS Allow Security Bypass and Denial of Service

Description

Affected Products

Related News (2 articles)

Community Vote

Pin to Dashboard

Verification

Vulnerability Timeline

Version History