dhcp: Command injection vulnerability in the DHCP client NetworkManager integration script

🗓️ 15 May 2018 19:44:58Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 1 Views

Command injection in DHCP client NetworkManager script on Red Hat Linux enables root access.

Reporter	Title	Published	Views	Family All 116
0day.today	DynoRoot DHCP - Client Command Injection Exploit	18 May 201800:00	–	zdt
0day.today	DHCP Client - Command Injection (DynoRoot) Exploit	13 Jun 201800:00	–	zdt
IBM Security Bulletins	Security Bulletin: A vulnerability in DHCP affects PowerKVM	6 Jul 201823:55	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities have been identified in IBM Java Runtime and the microcode shipped with the DS8000 Hardware Management Console (HMC)	3 Jun 201916:15	–	ibm
Tenable Nessus	Amazon Linux 2 : dhcp (ALAS-2018-1021)	30 May 201800:00	–	nessus
Tenable Nessus	Amazon Linux AMI : dhcp (ALAS-2018-1024)	30 May 201800:00	–	nessus
Tenable Nessus	CentOS 7 : dhcp (CESA-2018:1453)	16 May 201800:00	–	nessus
Tenable Nessus	CentOS 6 : dhcp (CESA-2018:1454)	16 May 201800:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP1 : dhcp (EulerOS-SA-2018-1122)	29 May 201800:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : dhcp (EulerOS-SA-2018-1123)	29 May 201800:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	7	any	rhvm-appliance	2:4.2-20180504.0.el7.noarch	rhvm-appliance-2:4.2-20180504.0.el7.noarch.noarch.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2018-1111
access	www.access.redhat.com/security/vulnerabilities/3442151
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2018-1111
cve	www.cve.org/CVERecord

27 Jun 2026 01:14Current

6Medium risk

Vulners AI Score6

CVSS 37.5

CVSS 27.9

EPSS0.94457

Dynamic Host Configuration Network Manager Script Root Access Spoofed Responses Red Hat Linux