CVE-2025-58063
HIGHCoreDNS 1.2.0-1.12.3 - Denial of Service via TTL Confusion in etcd Plugin
Title source: llmDescription
CoreDNS is a DNS server that chains plugins. Starting in version 1.2.0 and prior to version 1.12.4, the CoreDNS etcd plugin contains a TTL confusion vulnerability where lease IDs are incorrectly used as TTL values, enabling DNS cache pinning attacks. This effectively creates a DoS condition for DNS resolution of affected services. The `TTL()` function in `plugin/etcd/etcd.go` incorrectly casts etcd lease IDs (64-bit integers) to uint32 and uses them as TTL values. Large lease IDs become very large TTLs when cast to uint32. This enables cache pinning attacks. Version 1.12.4 contains a fix for the issue.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://github.com/coredns/coredns/security/advisories/GHSA-93mf-426m-g6x9
Scores
CVSS v3
7.1
EPSS
0.0041
EPSS Percentile
32.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-681
Status
published
Products (2)
coredns/coredns
1.2.0 - 1.12.4Go
coredns/coredns
>= 1.2.0, < 1.12.4
Published
Sep 09, 2025
Tracked Since
Feb 18, 2026