{
  "modified": "2025-09-18T13:43:34Z",
  "published": "2025-09-18T10:15:32Z",
  "id": "CVE-2025-30187",
  "details": "In some circumstances, when DNSdist is configured to use the nghttp2 library to process incoming DNS over HTTPS queries, an attacker might be able to cause a denial of service by crafting a DoH exchange that triggers an unbounded I/O read loop, causing an unexpected consumption of CPU resources.",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2025-05.html"
    }
  ]
}