DNS Traffic Amplification Vulnerability in Technitium DNS Server
CVE-2026-42255

7.2HIGH

Key Information:

Vendor: Technitium
Status: Dnsserver
Vendor: CVE Published:; 26 April 2026

What is CVE-2026-42255?

The Technitium DNS Server is susceptible to a vulnerability that allows attackers to exploit cyclic name server delegation, leading to DNS traffic amplification. This can result in increased bandwidth usage and potential denial of service, jeopardizing the server's performance and reliability.

Affected Version(s)

DnsServer 0 < 15.0.0

References

https://github.com/TechnitiumSoftware/DnsServer/blob/mast...

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 26, 2026
Vulnerability Reserved
Apr 26, 2026

CVE-2026-42255 Data

JSON