CVE-2025-30187

CVSS v3.1

3.7

Low

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions DNSdist (affected versions not specified)

Description DNSdist, when configured to utilize the nghttp2 library for processing DNS over HTTPS (DoH) queries, may be susceptible to a denial of service. A crafted DoH exchange can trigger an unbounded I/O read loop, leading to excessive CPU resource consumption.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-835

Related Identifiers

CVE-2025-30187

OPENSUSE-SU-2026:20461-1

SUSE-SU-2026:0888-1

SUSE-SU-2026:20995-1

USN-8037-1

Affected Products

Dnsdist

Linuxmint

Ubuntu

Nghttp2

CVE-2025-30187

Weakness Enumeration

Related Identifiers

Affected Products

References · 29