CVE-2025-30192 — Vulnetix

CVE-2025-30192 PUBLISHED CVSS 8.699999809265137 HIGH

Der Domain Name Service (DNS) ermöglicht die Umsetzung der Domainnamen in IP-Adressen. Zur Verhinderung von übermäßigen Anfragen werden die Zuordnungen häufig lokal in einem Cache gespeichert.

EPSS 0.12% · 30.5th percentile

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.12%

30.5th percentile

Affected Products

Vendor	Product	Versions
Open Source	Open Source PowerDNS recursor <5.2.4
Open Source	Open Source PowerDNS recursor <5.1.6
SUSE	SUSE openSUSE
Open Source	Open Source PowerDNS recursor <5.0.12

Timeline

Jul 21, 2025 Coalition ESS Score
Jul 21, 2025 CVE Published
Jul 21, 2025 CVE Updated
Jul 22, 2025 EPSS Score
Jul 22, 2025 Coalition ESS Score
Jul 31, 2025 EPSS Score
Jul 31, 2025 PoC Published
Aug 9, 2025 EPSS Score
Aug 18, 2025 EPSS Score
Aug 22, 2025 Coalition ESS Score
Aug 26, 2025 Coalition ESS Score
Aug 27, 2025 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1614.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1614 advisory
https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-04.html advisory
https://euvd.enisa.europa.eu/enisa/EUVD-2025-22089 advisory
https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JTRNY6XCHNMAXFCR7CFANTYF2LA75C65/ advisory

Open in Interactive Console →