CVE-2024-8418

HIGH

Aardvark-dns - Denial of Service via TCP DNS Query Processing

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-8418. PoCs published by goma0x2.

AI-analyzed exploit summary This repository contains a functional proof-of-concept exploit for CVE-2024-8418, a DoS vulnerability in Aardvark-dns. The exploit leverages the serial processing of TCP DNS queries by keeping a TCP connection open indefinitely, causing the server to become unresponsive.

Description

A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processing of TCP DNS queries. An attacker can exploit this flaw by keeping a TCP connection open indefinitely, causing the server to become unresponsive and resulting in other DNS queries timing out. This issue prevents legitimate users from accessing DNS services, thereby disrupting normal operations and causing service downtime.

Exploits (1)

gitlab WORKING POC

by goma0x2 · poc

https://gitlab.com/goma0x2/CVE-2024-8418

View Code ZIP pw:eip

This repository contains a functional proof-of-concept exploit for CVE-2024-8418, a DoS vulnerability in Aardvark-dns. The exploit leverages the serial processing of TCP DNS queries by keeping a TCP connection open indefinitely, causing the server to become unresponsive.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: aardvark-dns 1.12.1

No auth needed

Prerequisites: access to a container connected to the victim's network

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 23, 2026 Full analysis →

References (5)

Core 5

Core References

Exploit, Issue Tracking

https://github.com/containers/aardvark-dns/issues/500

Issue Tracking

https://github.com/containers/aardvark-dns/pull/503

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:7094

Third Party Advisory vdb-entry x_refsource_redhat

https://access.redhat.com/security/cve/CVE-2024-8418

Issue Tracking issue-tracking x_refsource_redhat

https://bugzilla.redhat.com/show_bug.cgi?id=2309683

Scores

CVSS v3 7.5

EPSS 0.0010

EPSS Percentile 27.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-400

Status published

Products (3)

containers/aardvark-dns 1.12.0

containers/aardvark-dns 1.12.1

crates.io/aardvark-dns 1.12.0 - 1.12.2crates.io

Published Sep 04, 2024

Tracked Since Feb 18, 2026