CVE-2026-35579 | coredns TSIG-gated Plugin up to 1.14.2 dns.TsigVerify MAC improper authentication (GHSA-vp29-5652-4fw9)

Inserito da Angelo Barbosa | Mag 6, 2026 | CVE

A vulnerability was found in coredns TSIG-gated Plugin up to 1.14.2. It has been classified as critical. Affected is the function dns.TsigVerify. This manipulation of the argument MAC causes improper authentication.

This vulnerability is handled as CVE-2026-35579. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is recommended.

CVE-2026-35579 | coredns TSIG-gated Plugin up to 1.14.2 dns.TsigVerify MAC improper authentication (GHSA-vp29-5652-4fw9)

Post correlati

CVE-2024-27310 | Zoho ManageEngine ADSelfService Plus up to 6400 LDAP Query denial of service

CVE-2025-8021 | files-bucket-server path traversal (SNYK-JS-FILESBUCKETSERVER-9510944)

CVE-2024-32861 | Johnson Controls Software House CCURE 9000 default permission (icsa-24-191-05)

CVE-2024-36755 | D-Link DIR-1950 up to 1.11B03 SSL Certificate certificate validation