The Cloudflare Blog

Subscribe to receive notifications of new posts:

NSEC3

Remediating new DNSSEC resource exhaustion vulnerabilities

2024-02-29

Cloudflare recently fixed two critical DNSSEC vulnerabilities: CVE-2023-50387 and CVE-2023-50868. Both of these vulnerabilities can exhaust computational resources of validating DNS resolvers. These vulnerabilities do not affect our Authoritative DNS or DNS firewall products...

Vicky Shrestha
Anbang Wen

Remediating new DNSSEC resource exhaustion vulnerabilities