Synced 16 Jun 2026 15:24 UTC Account
← All products

Dnsmasq

Simon Kelley · Network / DNS
↻ RSS feed
Monitors Dnsmasq and tailors your dashboard to that exact version.
all versions0/100 Critical

Summary iPlain-English security verdict for Dnsmasq, generated from its current health score, actively-exploited vulnerabilities, and latest supported version.

Dnsmasq currently scores 0/100 — critical. No tracked vulnerabilities are currently known to be exploited in the wild. Upgrade promptly to address the open critical vulnerabilities.

Disclosure trend iNew CVEs published for Dnsmasq each year (NVD). A higher bar means more disclosures that year — more scrutiny, not necessarily less safe.

'19
'20
'21
'22
'23
'24
'25
'26

Patch priority — what to act on iThe issues to fix first — actively exploited (CISA KEV) first, then by exploitation probability (EPSS), then severity. Each row's "→ fixed in" is the earliest version that patches it; "see advisory" means no fixed version is published.

Most urgent first — actively exploited, then likeliest to be exploited.

CVE-2023-50387 HIGH Resource exhaustion EPSS 100% → fixed in 2.90 CVE-2017-14492 CRITICAL Memory corruption EPSS 93% → see advisory CVE-2020-25687 MEDIUM CWE-122 EPSS 87% → fixed in 2.83 CVE-2020-25683 MEDIUM CWE-122 EPSS 86% → fixed in 2.83 CVE-2017-14491 CRITICAL Out-of-bounds write EPSS 85% → see advisory CVE-2017-14495 HIGH CWE-772 EPSS 84% → see advisory CVE-2017-14493 CRITICAL Memory corruption EPSS 84% → see advisory CVE-2020-25681 HIGH CWE-122 EPSS 81% → fixed in 2.83 CVE-2020-25682 HIGH CWE-122 EPSS 71% → fixed in 2.83 CVE-2017-14494 MEDIUM Information disclosure EPSS 68% → see advisory CVE-2017-14496 HIGH CWE-191 EPSS 66% → see advisory CVE-2017-13704 HIGH Improper input validation EPSS 65% → see advisory

See all 37 known Dnsmasq CVEs & security history →

Get alerted about Dnsmasq

Be emailed the moment Dnsmasq gets a newly exploited vulnerability (CISA KEV) or a release reaches end of life. Free · double opt-in · unsubscribe anytime.

We email only on real events for Dnsmasq — no marketing, no sharing, and we never know what you run. Track your whole stack →

Monitor up to 200 products — freeHit ☆ Monitor on anything you run, then sign in (no password) to sync your stack across devices and unlock smart insights, risk history & CSV/JSON exports. Sign in free →

Frequently asked

Is Dnsmasq safe and patched?

Dnsmasq currently scores 0/100 — critical. No tracked vulnerabilities are currently known to be exploited in the wild. Upgrade promptly to address the open critical vulnerabilities.

What should I do about Dnsmasq now?

Review the patch-priority list, apply the available fixes (or move to the latest release), and confirm against Simon Kelley's official advisory.

lifecycle unknown — needs latest supported version

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Simon Kelley's official advisory before you patch or upgrade — Dnsmasq official site ↗