Launch Week Day 1: Announcing Security Design Review

CoreDNS Cache Poisoning via a birthday attack

GHSA-h92q-fgpp-qhrq · CVE-2023-30464 · GO-2024-3134

Published Sep 18, 2024 · Modified Jun 5, 2026

Description

CoreDNS through 1.10.1 enables attackers to achieve DNS cache poisoning and inject fake responses via a birthday attack.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes