dnsdist (SUSE:Linux Enterprise Module for Basesystem 15 SP7) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Basesystem 15 SP7 package dnsdist, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (11)
CVE-2025-30193 — CVSS 7.5 (high): In some circumstances, when DNSdist is configured to allow an unlimited number of queries on a single, incoming TCP connection from a…
CVE-2025-30194 — CVSS 7.5 (high): When DNSdist is configured to provide DoH via the nghttp2 provider, an attacker can cause a denial of service by crafting a DoH exchange…
CVE-2025-8671 — CVSS 7.5 (high): A mismatch caused by client-triggered server-sent stream resets between HTTP/2 specifications and the internal architectures of some HTTP/2…
CVE-2026-24029 — CVSS 6.5 (medium): When the early_acl_drop (earlyACLDrop in Lua) option is disabled (default is enabled) on a DNS over HTTPs frontend using the nghttp2…
CVE-2026-27853 — CVSS 5.9 (medium): An attacker might be able to trigger an out-of-bounds write by sending crafted DNS responses to a DNSdist using the DNSQuestion:changeName…
CVE-2026-24030 — CVSS 5.3 (medium): An attacker might be able to trick DNSdist into allocating too much memory while processing DNS over QUIC or DNS over HTTP/3 payloads…
CVE-2026-24028 — CVSS 5.3 (medium): An attacker might be able to trigger an out-of-bounds read by sending a crafted DNS response packet, when custom Lua code uses…
CVE-2026-27854 — CVSS 4.8 (medium): An attacker might be able to trigger a use-after-free by sending crafted DNS queries to a DNSdist using the DNSQuestion:getEDNSOptions…
CVE-2025-30187 — CVSS 3.7 (low): In some circumstances, when DNSdist is configured to use the nghttp2 library to process incoming DNS over HTTPS queries, an attacker might…
CVE-2026-0397 — CVSS 3.1 (low): When the internal webserver is enabled (default is disabled), an attacker might be able to trick an administrator logged to the dashboard…
CVE-2026-0396 — CVSS 3.1 (low): An attacker might be able to inject HTML content into the internal web dashboard by sending crafted DNS queries to a DNSdist instance where…