← Back to CVEs
CVE-2026-26017
HIGH7.7
Description
CoreDNS is a DNS server that chains plugins. Prior to version 1.14.2, a logical vulnerability in CoreDNS allows DNS access controls to be bypassed due to the default execution order of plugins. Security plugins such as acl are evaluated before the rewrite plugin, resulting in a Time-of-Check Time-of-Use (TOCTOU) flaw. This issue has been patched in version 1.14.2.
CVE Details
CVSS v3.1 Score7.7
SeverityHIGH
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
Published3/6/2026
Last Modified3/9/2026
Sourcenvd
Honeypot Sightings0
Affected Products
coredns.io:coredns
Weaknesses (CWE)
CWE-367
References
https://github.com/coredns/coredns/releases/tag/v1.14.2(security-advisories@github.com)
https://github.com/coredns/coredns/security/advisories/GHSA-c9v3-4pv7-87pr(security-advisories@github.com)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.