๐Ÿ” CVE Alert

CVE-2026-47703

UNKNOWN 0.0

AdGuard Home: DoQ-to-UDP State Reduction and Source-Port Oracle

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

AdGuard Home is a network-wide software for blocking ads and tracking. Prior to 0.107.75, AdGuard Home's client-triggered DoQ forwarding path to a udp:// upstream reduced backend UDP DNS state by producing dns_id=0 or txid=0 and exposed a quoted-port ICMP source-port oracle, weakening DNS response matching for forwarded queries. This issue is fixed in version 0.107.75.

CWE CWE-330 CWE-346
Vendor adguardteam
Product adguardhome
Published Jul 15, 2026
Last Updated Jul 15, 2026
Stay Ahead of the Next One

Get instant alerts for adguardteam adguardhome

Be the first to know when new unknown vulnerabilities affecting adguardteam adguardhome are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

AdguardTeam / AdGuardHome
< 0.107.75

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/AdguardTeam/AdGuardHome/security/advisories/GHSA-xgx4-4h9w-53pv