logo
DATABASE RESOURCES PRICING ABOUT US

NewStart CGSL MAIN 6.02 : NetworkManager Vulnerability (NS-SA-2022-0070)

Description

The remote NewStart CGSL host, running version MAIN 6.02, has NetworkManager packages installed that are affected by a vulnerability: - An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigure the server. (CVE-2020-13529) Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.


Related