| CVE |
Severity |
CVSS |
Risk |
Published |
Description |
Impact |
| CVE-2026-35579 |
critical |
9.8 |
9.8 |
22d ago |
CoreDNS has TSIG authentication bypass on gRPC and QUIC transports |
|
| CVE-2026-33489 |
high |
7.5 |
7.5 |
22d ago |
CoreDNS' transfer stanza selection uses lexicographic compare (subzone ACL bypass) |
|
| CVE-2026-33190 |
high |
7.5 |
7.5 |
22d ago |
CoreDNS has TSIG authentication bypass on DoT, DoH, DoH3, DoQ, and gRPC |
|
| CVE-2026-32936 |
high |
7.5 |
7.5 |
22d ago |
CoreDNS DoH GET oversized dns= query parameter causes pre-validation CPU and memory amplification |
|
| CVE-2026-32934 |
high |
7.5 |
7.5 |
22d ago |
CoreDNS' DoQ worker pool does not bound stream backlog |
|