Unknown · Knot Resolver · CVE-2023-26249
**Name of the Vulnerable Software and Affected Versions**
Knot Resolver versions prior to 5.6.0
**Description**
The issue enables attackers to consume the resolver's resources, launching amplification attacks and potentially causing a denial of service. A single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response.
**Recommendations**
For versions prior to 5.6.0, update to version 5.6.0 or later to resolve the issue.