CVE-2026-45557— Technitium DNS Server excessive DNSSEC requests

CVSS 5.8 · Medium EPSS 0.05% · P15 Updated May 20, 2026

Possible ATT&CK Techniques 2AI

T1102 · Web Service T1498 · Network Denial of Service

Affected Version Matrix 2

Vendor	Product	Version Range	Status
Technitium	DNS Server	`< 15.0`	affected
		`15.0`	unaffected

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-45557

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Technitium DNS Server excessive DNSSEC requests

Source: NVD (National Vulnerability Database)

Vulnerability Description

Technitium DNS Server aggressively tries to fetch missing RRSIG records or mismatched DNSKEY records. An attacker in control of a domain can cause a vulnerable system to generate excessive network traffic. Fixed in 15.0.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Source: NVD (National Vulnerability Database)

Vulnerability Type

不对称的资源消耗(放大攻击)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Technitium DNS Server 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Technitium DNS Server是Technitium团队的一个开源的权威和递归 DNS 服务器。可用于自托管 DNS 服务器以保护隐私和安全。 Technitium DNS Server 15.0之前版本存在安全漏洞，该漏洞源于主动尝试获取缺失的RRSIG记录或错配的DNSKEY记录，攻击者控制域可导致系统生成过多网络流量。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Technitium	DNS Server	0 ~ 15.0	-

II. Public POCs for CVE-2026-45557

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-45557

请登录查看更多情报信息。

Vendor Advisories for CVE-2026-45557 (2)

Vendor Pages for CVE-2026-45557 (1)

https://github.com/TechnitiumSoftware/DnsServer/blo/master/CHANGELOG.md#version-150patch

https://nvd.nist.gov/vuln/detail/CVE-2026-45557

IV. Related Vulnerabilities

Same product: DNS Server

CVE-2022-27615
Synology DNS Server 路径遍历漏洞

Same vendor: Technitium

CVE-2026-42255
Technitium DNS Server 安全漏洞

Same weakness: CWE-405

V. Comments for CVE-2026-45557

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-45557— Technitium DNS Server excessive DNSSEC requests

Possible ATT&CK Techniques 2AI

Affected Version Matrix 2

I. Basic Information for CVE-2026-45557

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-45557

III. Intelligence Information for CVE-2026-45557

Vendor Advisories for CVE-2026-45557 (2)

Vendor Pages for CVE-2026-45557 (1)

IV. Related Vulnerabilities

V. Comments for CVE-2026-45557

Leave a comment