On-path DNS attack

From https://www.imperva.com/learn/application-security/dns-hijacking-redirection/:

“Attackers intercept communication between a user and a DNS server and manipulates the content of the reply to the client”

From https://www.cloudflare.com/en-gb/learning/security/threats/on-path-attack/:

“On-path attackers place themselves between two devices (often a web browser and a web server) and intercept or modify communications between the two. The attackers can then collect information as well as impersonate either of the two agents. In addition to websites, these attacks can target email communications, DNS lookups, and public WiFi networks. Typical targets of on-path attackers include SaaS businesses, ecommerce businesses, and users of financial apps.”

On-path DNS attacks cover both manipulation of DNS queries and listening in on DNS traffic.