[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-30464":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":468,"aliases":469,"duplicate_of":9,"upstream":472,"downstream":473,"duplicates":476,"related":477,"reserved_at":9,"published_at":483,"modified_at":484,"state":485,"summary":486,"references_raw":495,"kevs":523,"epss":524,"epss_history":527,"metrics":800,"affected":817},"CVE-2023-30464","CoreDNS through 1.10.1 enables attackers to achieve DNS cache poisoning and inject fake responses via a birthday attack.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-290","Authentication Bypass by Spoofing","This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.","weakness","Incomplete","Base",[19,194,198,202,206,282,286,290,429,433],{"id":20,"name":21,"techniques":22},"CAPEC-21","Exploitation of Trusted Identifiers",[23,140,170],{"id":24,"name":25,"tactics":26,"countermeasures":36},"T1134","Access Token Manipulation",[27,30,33],{"id":28,"name":29},"TA0030","Defense Evasion",{"id":31,"name":32},"TA0005","Stealth",{"id":34,"name":35},"TA0111","Privilege Escalation",[37,42,46,50,55,59,63,67,71,76,80,84,89,94,98,102,106,110,115,119,124,128,132,136],{"id":38,"name":39,"tactic":40},"D3-CI","Configuration Inventory",{"name":41},"Model",{"id":43,"name":44,"tactic":45},"D3-NTPM","Network Traffic Policy Mapping",{"name":41},{"id":47,"name":48,"tactic":49},"D3-AM","Access Modeling",{"name":41},{"id":51,"name":52,"tactic":53},"D3-AEM","Application Exception Monitoring",{"name":54},"Detect",{"id":56,"name":57,"tactic":58},"D3-SCA","System Call Analysis",{"name":54},{"id":60,"name":61,"tactic":62},"D3-CCSA","Credential Compromise Scope Analysis",{"name":54},{"id":64,"name":65,"tactic":66},"D3-OPM","Operational Process Monitoring",{"name":54},{"id":68,"name":69,"tactic":70},"D3-PSA","Process Spawn Analysis",{"name":54},{"id":72,"name":73,"tactic":74},"D3-ST","Session Termination",{"name":75},"Evict",{"id":77,"name":78,"tactic":79},"D3-CR","Credential Revocation",{"name":75},{"id":81,"name":82,"tactic":83},"D3-ANCI","Authentication Cache Invalidation",{"name":75},{"id":85,"name":86,"tactic":87},"D3-DUC","Decoy User Credential",{"name":88},"Deceive",{"id":90,"name":91,"tactic":92},"D3-CH","Credential Hardening",{"name":93},"Harden",{"id":95,"name":96,"tactic":97},"D3-MFA","Multi-factor Authentication",{"name":93},{"id":99,"name":100,"tactic":101},"D3-CRO","Credential Rotation",{"name":93},{"id":103,"name":104,"tactic":105},"D3-TB","Token Binding",{"name":93},{"id":107,"name":108,"tactic":109},"D3-TBA","Token-based Authentication",{"name":93},{"id":111,"name":112,"tactic":113},"D3-RC","Restore Configuration",{"name":114},"Restore",{"id":116,"name":117,"tactic":118},"D3-RIC","Reissue Credential",{"name":114},{"id":120,"name":121,"tactic":122},"D3-SCF","System Call Filtering",{"name":123},"Isolate",{"id":125,"name":126,"tactic":127},"D3-CTS","Credential Transmission Scoping",{"name":123},{"id":129,"name":130,"tactic":131},"D3-EAL","Executable Allowlisting",{"name":123},{"id":133,"name":134,"tactic":135},"D3-EDL","Executable Denylisting",{"name":123},{"id":137,"name":138,"tactic":139},"D3-HBPI","Hardware-based Process Isolation",{"name":123},{"id":141,"name":142,"tactics":143,"countermeasures":147},"T1528","Steal Application Access Token",[144],{"id":145,"name":146},"TA0031","Credential Access",[148,150,152,154,156,158,160,162,164,166,168],{"id":60,"name":61,"tactic":149},{"name":54},{"id":77,"name":78,"tactic":151},{"name":75},{"id":81,"name":82,"tactic":153},{"name":75},{"id":85,"name":86,"tactic":155},{"name":88},{"id":90,"name":91,"tactic":157},{"name":93},{"id":95,"name":96,"tactic":159},{"name":93},{"id":99,"name":100,"tactic":161},{"name":93},{"id":103,"name":104,"tactic":163},{"name":93},{"id":107,"name":108,"tactic":165},{"name":93},{"id":116,"name":117,"tactic":167},{"name":114},{"id":125,"name":126,"tactic":169},{"name":123},{"id":171,"name":172,"tactics":173,"countermeasures":175},"T1539","Steal Web Session Cookie",[174],{"id":145,"name":146},[176,178,180,182,184,186,188,190,192],{"id":60,"name":61,"tactic":177},{"name":54},{"id":77,"name":78,"tactic":179},{"name":75},{"id":81,"name":82,"tactic":181},{"name":75},{"id":85,"name":86,"tactic":183},{"name":88},{"id":90,"name":91,"tactic":185},{"name":93},{"id":95,"name":96,"tactic":187},{"name":93},{"id":99,"name":100,"tactic":189},{"name":93},{"id":116,"name":117,"tactic":191},{"name":114},{"id":125,"name":126,"tactic":193},{"name":123},{"id":195,"name":196,"techniques":197},"CAPEC-22","Exploiting Trust in Client",[],{"id":199,"name":200,"techniques":201},"CAPEC-459","Creating a Rogue Certification Authority Certificate",[],{"id":203,"name":204,"techniques":205},"CAPEC-461","Web Services API Signature Forgery Leveraging Hash Function Extension Weakness",[],{"id":207,"name":208,"techniques":209},"CAPEC-473","Signature Spoof",[210,273],{"id":211,"name":212,"tactics":213,"countermeasures":216},"T1036.001","Invalid Code Signature",[214,215],{"id":28,"name":29},{"id":31,"name":32},[217,221,225,229,233,237,241,245,249,253,257,261,265,269,271],{"id":218,"name":219,"tactic":220},"D3-FA","File Analysis",{"name":54},{"id":222,"name":223,"tactic":224},"D3-FIM","File Integrity Monitoring",{"name":54},{"id":226,"name":227,"tactic":228},"D3-DA","Dynamic Analysis",{"name":54},{"id":230,"name":231,"tactic":232},"D3-EFA","Emulated File Analysis",{"name":54},{"id":234,"name":235,"tactic":236},"D3-FEV","File Eviction",{"name":75},{"id":238,"name":239,"tactic":240},"D3-DF","Decoy File",{"name":88},{"id":242,"name":243,"tactic":244},"D3-FE","File Encryption",{"name":93},{"id":246,"name":247,"tactic":248},"D3-RF","Restore File",{"name":114},{"id":250,"name":251,"tactic":252},"D3-CF","Content Filtering",{"name":123},{"id":254,"name":255,"tactic":256},"D3-LFP","Local File Permissions",{"name":123},{"id":258,"name":259,"tactic":260},"D3-RFAM","Remote File Access Mediation",{"name":123},{"id":262,"name":263,"tactic":264},"D3-CQ","Content Quarantine",{"name":123},{"id":266,"name":267,"tactic":268},"D3-CM","Content Modification",{"name":123},{"id":129,"name":130,"tactic":270},{"name":123},{"id":133,"name":134,"tactic":272},{"name":123},{"id":274,"name":275,"tactics":276,"countermeasures":281},"T1553.002","Code Signing",[277,278],{"id":28,"name":29},{"id":279,"name":280},"TA0112","Defense Impairment",[],{"id":283,"name":284,"techniques":285},"CAPEC-476","Signature Spoofing by Misrepresentation",[],{"id":287,"name":288,"techniques":289},"CAPEC-59","Session Credential Falsification through Prediction",[],{"id":291,"name":292,"techniques":293},"CAPEC-60","Reusing Session IDs (aka Session Replay)",[294,324],{"id":295,"name":296,"tactics":297,"countermeasures":301},"T1134.001","Token Impersonation/Theft",[298,299,300],{"id":28,"name":29},{"id":31,"name":32},{"id":34,"name":35},[302,304,306,308,310,312,314,316,318,320,322],{"id":60,"name":61,"tactic":303},{"name":54},{"id":77,"name":78,"tactic":305},{"name":75},{"id":81,"name":82,"tactic":307},{"name":75},{"id":85,"name":86,"tactic":309},{"name":88},{"id":90,"name":91,"tactic":311},{"name":93},{"id":95,"name":96,"tactic":313},{"name":93},{"id":99,"name":100,"tactic":315},{"name":93},{"id":103,"name":104,"tactic":317},{"name":93},{"id":107,"name":108,"tactic":319},{"name":93},{"id":116,"name":117,"tactic":321},{"name":114},{"id":125,"name":126,"tactic":323},{"name":123},{"id":325,"name":326,"tactics":327,"countermeasures":332},"T1550.004","Web Session Cookie",[328,329],{"id":28,"name":29},{"id":330,"name":331},"TA0109","Lateral Movement",[333,337,341,345,349,353,357,361,365,369,373,375,377,381,385,389,393,395,397,399,401,403,405,407,411,415,417,419,423,427],{"id":334,"name":335,"tactic":336},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":54},{"id":338,"name":339,"tactic":340},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":54},{"id":342,"name":343,"tactic":344},"D3-CSPP","Client-server Payload Profiling",{"name":54},{"id":346,"name":347,"tactic":348},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":54},{"id":350,"name":351,"tactic":352},"D3-NTSA","Network Traffic Signature Analysis",{"name":54},{"id":354,"name":355,"tactic":356},"D3-APCA","Application Protocol Command Analysis",{"name":54},{"id":358,"name":359,"tactic":360},"D3-NTCD","Network Traffic Community Deviation",{"name":54},{"id":362,"name":363,"tactic":364},"D3-RTSD","Remote Terminal Session Detection",{"name":54},{"id":366,"name":367,"tactic":368},"D3-PLA","Process Lineage Analysis",{"name":54},{"id":370,"name":371,"tactic":372},"D3-PSMD","Process Self-Modification Detection",{"name":54},{"id":68,"name":69,"tactic":374},{"name":54},{"id":60,"name":61,"tactic":376},{"name":54},{"id":378,"name":379,"tactic":380},"D3-PT","Process Termination",{"name":75},{"id":382,"name":383,"tactic":384},"D3-PS","Process Suspension",{"name":75},{"id":386,"name":387,"tactic":388},"D3-HR","Host Reboot",{"name":75},{"id":390,"name":391,"tactic":392},"D3-HS","Host Shutdown",{"name":75},{"id":77,"name":78,"tactic":394},{"name":75},{"id":81,"name":82,"tactic":396},{"name":75},{"id":85,"name":86,"tactic":398},{"name":88},{"id":90,"name":91,"tactic":400},{"name":93},{"id":95,"name":96,"tactic":402},{"name":93},{"id":99,"name":100,"tactic":404},{"name":93},{"id":116,"name":117,"tactic":406},{"name":114},{"id":408,"name":409,"tactic":410},"D3-NTF","Network Traffic Filtering",{"name":123},{"id":412,"name":413,"tactic":414},"D3-KBPI","Kernel-based Process Isolation",{"name":123},{"id":120,"name":121,"tactic":416},{"name":123},{"id":137,"name":138,"tactic":418},{"name":123},{"id":420,"name":421,"tactic":422},"D3-ABPI","Application-based Process Isolation",{"name":123},{"id":424,"name":425,"tactic":426},"D3-WSAM","Web Session Access Mediation",{"name":123},{"id":125,"name":126,"tactic":428},{"name":123},{"id":430,"name":431,"techniques":432},"CAPEC-667","Bluetooth Impersonation AttackS (BIAS)",[],{"id":434,"name":435,"techniques":436},"CAPEC-94","Adversary in the Middle (AiTM)",[437],{"id":438,"name":439,"tactics":440,"countermeasures":445},"T1557","Adversary-in-the-Middle",[441,442],{"id":145,"name":146},{"id":443,"name":444},"TA0100","Collection",[446,448,450,452,454,456,458,460,462,466],{"id":334,"name":335,"tactic":447},{"name":54},{"id":338,"name":339,"tactic":449},{"name":54},{"id":342,"name":343,"tactic":451},{"name":54},{"id":346,"name":347,"tactic":453},{"name":54},{"id":350,"name":351,"tactic":455},{"name":54},{"id":354,"name":355,"tactic":457},{"name":54},{"id":358,"name":359,"tactic":459},{"name":54},{"id":362,"name":363,"tactic":461},{"name":54},{"id":463,"name":464,"tactic":465},"D3-CAA","Connection Attempt Analysis",{"name":54},{"id":408,"name":409,"tactic":467},{"name":123},[],[470,471],"GHSA-h92q-fgpp-qhrq","GO-2024-3134",[],[474],{"_key":475},"OPENSUSE-SU-2024:0319-1",[],[478,479,481],{"_key":475},{"_key":480},"CGA-M43C-F372-WGMC",{"_key":482},"CGA-2M4X-9M4P-3GH7","2024-09-18T00:00:00.000Z","2024-09-19T18:19:03.084Z","Analyzed",{"cisa_kev":487,"cisa_ransomware":487,"cisa_vendor":9,"epss_severity":488,"epss_score":489,"severity":490,"severity_score":491,"severity_version":492,"severity_source":493,"severity_vector":494,"severity_status":485},false,"low",0.00055,"high",7.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",[496,504,509,514,518],{"url":497,"sources":498,"tags":501},"https://gist.github.com/idealeer/e41c7fb3b661d4262d0b6f21e12168ba",[493,499,500],"nvd","osv_go",[502,503],"Third Party Advisory","WEB",{"url":505,"sources":506,"tags":507},"https://nvd.nist.gov/vuln/detail/CVE-2023-30464",[500],[508],"Advisory",{"url":510,"sources":511,"tags":512},"https://github.com/coredns/coredns",[500],[513],"PACKAGE",{"url":515,"sources":516,"tags":517},"https://github.com/advisories/GHSA-h92q-fgpp-qhrq",[500],[508],{"url":519,"sources":520,"tags":521},"https://github.com/coredns/coredns/commit/604a902e2c7e0317aecaa3666124079c75a31573",[500],[522],"FIX",[],{"date":525,"score":489,"percentile":526},"2026-06-04",0.17542,[528,532,535,539,542,545,548,551,554,557,560,563,566,569,572,576,579,582,585,588,590,593,596,599,602,605,608,611,614,617,620,623,626,629,632,635,638,641,644,647,650,653,656,659,662,665,668,672,675,678,681,684,687,690,693,695,698,701,704,707,710,713,716,719,722,725,728,731,734,737,740,743,746,749,752,755,758,761,764,767,770,773,776,779,782,785,788,791,794,797],{"date":529,"score":530,"percentile":531},"2025-11-04",0.0006,0.18867,{"date":533,"score":489,"percentile":534},"2025-11-05",0.17256,{"date":536,"score":537,"percentile":538},"2025-11-06",0.00046,0.1407,{"date":540,"score":537,"percentile":541},"2025-11-07",0.14081,{"date":543,"score":537,"percentile":544},"2025-11-08",0.14088,{"date":546,"score":537,"percentile":547},"2025-11-09",0.14066,{"date":549,"score":537,"percentile":550},"2025-11-10",0.14039,{"date":552,"score":537,"percentile":553},"2025-11-11",0.14061,{"date":555,"score":537,"percentile":556},"2025-11-12",0.14097,{"date":558,"score":537,"percentile":559},"2025-11-13",0.14122,{"date":561,"score":537,"percentile":562},"2025-11-14",0.14149,{"date":564,"score":537,"percentile":565},"2025-11-15",0.14115,{"date":567,"score":537,"percentile":568},"2025-11-16",0.1411,{"date":570,"score":537,"percentile":571},"2025-11-17",0.14074,{"date":573,"score":574,"percentile":575},"2025-11-18",0.00159,0.3134,{"date":577,"score":574,"percentile":578},"2025-11-19",0.31356,{"date":580,"score":574,"percentile":581},"2025-11-20",0.31351,{"date":583,"score":537,"percentile":584},"2025-11-21",0.141,{"date":586,"score":537,"percentile":587},"2025-11-22",0.14095,{"date":589,"score":537,"percentile":541},"2025-11-23",{"date":591,"score":537,"percentile":592},"2025-11-24",0.14046,{"date":594,"score":537,"percentile":595},"2025-11-25",0.14047,{"date":597,"score":537,"percentile":598},"2025-11-26",0.14045,{"date":600,"score":537,"percentile":601},"2025-11-27",0.14052,{"date":603,"score":537,"percentile":604},"2025-11-28",0.14032,{"date":606,"score":537,"percentile":607},"2025-11-29",0.14024,{"date":609,"score":537,"percentile":610},"2025-11-30",0.14034,{"date":612,"score":537,"percentile":613},"2025-12-01",0.14067,{"date":615,"score":537,"percentile":616},"2025-12-02",0.14087,{"date":618,"score":537,"percentile":619},"2025-12-03",0.14111,{"date":621,"score":537,"percentile":622},"2025-12-04",0.14089,{"date":624,"score":537,"percentile":625},"2025-12-05",0.14154,{"date":627,"score":537,"percentile":628},"2025-12-06",0.14175,{"date":630,"score":537,"percentile":631},"2025-12-07",0.14157,{"date":633,"score":537,"percentile":634},"2025-12-08",0.14171,{"date":636,"score":537,"percentile":637},"2025-12-09",0.14231,{"date":639,"score":537,"percentile":640},"2025-12-10",0.14307,{"date":642,"score":537,"percentile":643},"2025-12-11",0.14334,{"date":645,"score":537,"percentile":646},"2025-12-12",0.14383,{"date":648,"score":537,"percentile":649},"2025-12-13",0.14393,{"date":651,"score":537,"percentile":652},"2025-12-14",0.14356,{"date":654,"score":537,"percentile":655},"2025-12-15",0.1432,{"date":657,"score":537,"percentile":658},"2025-12-16",0.14336,{"date":660,"score":537,"percentile":661},"2025-12-17",0.14433,{"date":663,"score":537,"percentile":664},"2025-12-18",0.14487,{"date":666,"score":537,"percentile":667},"2025-12-19",0.14524,{"date":669,"score":670,"percentile":671},"2025-12-20",0.00061,0.19194,{"date":673,"score":489,"percentile":674},"2025-12-21",0.17451,{"date":676,"score":489,"percentile":677},"2025-12-22",0.174,{"date":679,"score":489,"percentile":680},"2025-12-23",0.17399,{"date":682,"score":489,"percentile":683},"2025-12-24",0.17425,{"date":685,"score":489,"percentile":686},"2025-12-25",0.17508,{"date":688,"score":489,"percentile":689},"2025-12-26",0.17498,{"date":691,"score":489,"percentile":692},"2025-12-27",0.17492,{"date":694,"score":489,"percentile":674},"2025-12-28",{"date":696,"score":489,"percentile":697},"2025-12-29",0.17421,{"date":699,"score":489,"percentile":700},"2025-12-30",0.17437,{"date":702,"score":489,"percentile":703},"2025-12-31",0.17512,{"date":705,"score":489,"percentile":706},"2026-01-01",0.17609,{"date":708,"score":489,"percentile":709},"2026-01-02",0.17598,{"date":711,"score":489,"percentile":712},"2026-01-03",0.17581,{"date":714,"score":489,"percentile":715},"2026-01-04",0.1748,{"date":717,"score":489,"percentile":718},"2026-01-05",0.17445,{"date":720,"score":489,"percentile":721},"2026-01-06",0.17456,{"date":723,"score":489,"percentile":724},"2026-01-07",0.17491,{"date":726,"score":489,"percentile":727},"2026-01-08",0.17557,{"date":729,"score":489,"percentile":730},"2026-01-09",0.17564,{"date":732,"score":489,"percentile":733},"2026-01-10",0.17577,{"date":735,"score":489,"percentile":736},"2026-01-11",0.17539,{"date":738,"score":489,"percentile":739},"2026-01-12",0.17499,{"date":741,"score":489,"percentile":742},"2026-01-13",0.17481,{"date":744,"score":489,"percentile":745},"2026-01-14",0.17533,{"date":747,"score":489,"percentile":748},"2026-01-15",0.1753,{"date":750,"score":489,"percentile":751},"2026-01-16",0.17567,{"date":753,"score":489,"percentile":754},"2026-01-17",0.17575,{"date":756,"score":489,"percentile":757},"2026-01-18",0.17516,{"date":759,"score":489,"percentile":760},"2026-01-19",0.17461,{"date":762,"score":489,"percentile":763},"2026-01-20",0.17436,{"date":765,"score":489,"percentile":766},"2026-01-21",0.17415,{"date":768,"score":489,"percentile":769},"2026-01-22",0.17351,{"date":771,"score":489,"percentile":772},"2026-01-23",0.17446,{"date":774,"score":489,"percentile":775},"2026-01-24",0.17475,{"date":777,"score":489,"percentile":778},"2026-01-25",0.17406,{"date":780,"score":489,"percentile":781},"2026-01-26",0.17311,{"date":783,"score":489,"percentile":784},"2026-01-27",0.17301,{"date":786,"score":489,"percentile":787},"2026-01-28",0.173,{"date":789,"score":489,"percentile":790},"2026-01-29",0.17281,{"date":792,"score":489,"percentile":793},"2026-01-30",0.17296,{"date":795,"score":489,"percentile":796},"2026-01-31",0.1731,{"date":798,"score":489,"percentile":799},"2026-02-01",0.17342,[801,806,808],{"source":493,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":802,"cvss_v4_0":9},{"baseScore":491,"baseSeverity":803,"vectorString":494,"impactScore":804,"exploitabilityScore":805},"HIGH",6,10,{"source":499,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":807,"cvss_v4_0":9},{"baseScore":491,"baseSeverity":803,"vectorString":494,"impactScore":804,"exploitabilityScore":805},{"source":500,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":809,"cvss_v4_0":814},{"baseScore":810,"baseSeverity":9,"vectorString":811,"impactScore":812,"exploitabilityScore":813},3.7,"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",2.3,5.6,{"baseScore":815,"baseSeverity":9,"vectorString":816,"impactScore":9,"exploitabilityScore":9},6.3,"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",[818,829],{"ecosystem":9,"name":819,"vendor":820,"product":819,"cpe_part":821,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":822},"coredns","coredns.io","a",[823],{"version":824,"is_range":825,"range_type":826,"version_start":9,"version_start_type":9,"version_end":827,"version_end_type":828,"fixed_in":9},"lte1.10.1",true,"cpe","1.10.1","including",{"ecosystem":830,"name":831,"vendor":832,"product":819,"cpe_part":9,"purl_type":833,"purl_namespace":832,"purl_name":819,"source":9,"versions":834},"Go","github.com/coredns/coredns","github.com/coredns","golang",[835,838],{"version":836,"is_range":825,"range_type":837,"version_start":9,"version_start_type":9,"version_end":827,"version_end_type":828,"fixed_in":9},"lte1_10_1","semver",{"version":839,"is_range":825,"range_type":837,"version_start":9,"version_start_type":9,"version_end":840,"version_end_type":841,"fixed_in":9},"lt1_11_0","1.11.0","excluding"]