PT-2022-11486 · Hashicorp +3 · Hashicorp Consul +3

Name of the Vulnerable Software and Affected Versions: HashiCorp Consul versions 1.8.1 through 1.11.8 HashiCorp Consul version 1.12.4 HashiCorp Consul version 1.13.1 Description: The issue arises from improper validation of node or segment names prior to their interpolation and usage in JWT claim...

PT-2022-6340 · Unknown · Mklogic-500

Name of the Vulnerable Software and Affected Versions: MKLogic-500 affected versions not specified Description: The issue is related to the transmission of information sufficient for recovering encryption keys in plain text, which could allow a remote attacker to decrypt the configuration protoco...

The vulnerability affects Cisco IOS and Cisco IOS XE operating systems via DHCP options. It allows a malicious actor to trigger a device reboot or cause a service failure.

The vulnerability of Cisco IOS and Cisco IOS XE DHCP-enabled operating systems exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to trigger a device reboot or cause a service failure using a specially crafted DHCPv4 packet...

The vulnerability of DHCP option 82 for Cisco IOS and Cisco IOS XE operating systems allows a attacker to trigger a device reboot or cause a service failure.

The vulnerability of DHCP option 82 for Cisco IOS and Cisco IOS XE operating systems exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to trigger a device reboot or cause a service failure using a specially crafted DHCPv4 packet...

The vulnerability of DHCP option 82 for Cisco IOS and Cisco IOS XE operating systems allows a attacker to trigger a device reboot or cause a service failure.

The vulnerability of DHCP option 82 for Cisco IOS and Cisco IOS XE operating systems exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to trigger a device reboot or cause a service failure using a specially crafted DHCPv4 packet...

The vulnerability of the NETCONF function in the Cisco IOS XE operating system allows a hacker to trigger a device reboot or cause a service failure.

The vulnerability of the NETCONF function in the Cisco IOS XE operating system is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to trigger a device reboot or cause service failure remotely...

[SECURITY] Fedora 36 Update: dhcp-4.4.3-2.fc36

DHCP Dynamic Host Configuration Protocol...

Fedora: Security Advisory for dhcp (FEDORA-2022-05918f0838)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 34 Update: dhcp-4.4.2-12.b1.fc34

DHCP Dynamic Host Configuration Protocol...

PT-2022-19883 · Amb1 Sdk · Amb1 Sdk

Name of the Vulnerable Software and Affected Versions: amb1 sdk versions prior to 2022-03-11 Description: The issue is related to the mishandling of data structures for DHCP packet data in the dhcps.c file within the amb1 sdk. Recommendations: For versions prior to 2022-03-11, update to a version...

The vulnerability of the NETCONF protocol implementation in Cisco SD-WAN vEdge software allows a attacker to cause service failure or trigger an emergency shutdown of the application.

The vulnerability of the NETCONF protocol implementation in Cisco SD-WAN vEdge software lies in the uncontrolled memory consumption. Exploiting this vulnerability could allow an attacker to cause service failures or trigger an emergency shutdown of the application...

[SECURITY] Fedora 35 Update: dhcp-4.4.3-2.fc35

DHCP Dynamic Host Configuration Protocol...

CVE-2022-20717

A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service DoS condition. This vulnerability is due to insufficient memory management when an affected device...

Cisco Sd-Wan Vedge安全漏洞

The Cisco Sd-Wan Vedge is a router from Cisco USA. A security vulnerability exists in the Cisco SD-WAN vEdge that originates from an attacker being able to create a memory leak in the Cisco SD-WAN vEdge via NETCONF to trigger a denial of service...

CVE-2022-27001

Arris TR3300 v1.0.13 were discovered to contain a command injection vulnerability in the dhcp function via the hostname parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

Cisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability

The Dynamic Host Configuration Protocol DHCP relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system...

Cisco IOS Software for Cisco Industrial Ethernet Switches PROFINET Denial-of-Service Vulnerability

A vulnerability in the implementation of the PROFINET Discovery and Configuration Protocol PN-DCP for Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service...

CVE-2021-31881

A vulnerability has been identified in Capital Embedded AR Classic 431-422 All versions, Capital Embedded AR Classic R20-11 All versions V2303. When processing a DHCP OFFER message, the DHCP client application does not validate the length of the Vendor options, leading to Denial-of-Service...

CVE-2021-31884

A vulnerability has been identified in APOGEE MBC PPC BACnet All versions, APOGEE MBC PPC P2 Ethernet All versions, APOGEE MEC PPC BACnet All versions, APOGEE MEC PPC P2 Ethernet All versions, APOGEE PXC Compact BACnet All versions = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and...

CLSA-2021-1634922551 Fixed CVE-2021-25217 in dhcp

CVE-2021-25217: avoid buffer overrun...