Lucene search
+L

415 matches found

vulnrichment
vulnrichment
added 2023/05/16 7:15 a.m.10 views

CVE-2023-32955

Improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in DHCP Client Functionality in Synology Router Manager SRM before 1.2.5-8227-6 and 1.3.1-9346-3 allows man-in-the-middle attackers to execute arbitrary commands via unspecified vectors...

8.1CVSS8.5AI score0.01252EPSS
Exploits0References1
cvelist
cvelist
added 2023/05/16 7:15 a.m.40 views

CVE-2023-32955

Improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in DHCP Client Functionality in Synology Router Manager SRM before 1.2.5-8227-6 and 1.3.1-9346-3 allows man-in-the-middle attackers to execute arbitrary commands via unspecified vectors...

8.1CVSS9.5AI score0.01252EPSS
Exploits0References1
cnnvd
cnnvd
added 2023/04/07 12:0 a.m.5 views

Tenda AC5 缓冲区错误漏洞

Tenda AC5 is a wireless router from Tenda China. A security vulnerability exists in the Tenda AC5 USAC5V1.0RTLV15.03.06.28, which stems from a stack-based buffer overflow issue in the fromDhcpListClient function, which can be exploited by an attacker to cause a denial of service DoS or to execute...

9.8CVSS9.2AI score0.0087EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2023/03/23 12:0 a.m.8 views

CVE-2023-20081 Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software, IOS Software, and IOS XE Software IPv6 DHCP (DHCPv6) Client Denial of Service Vulnerability

A vulnerability in the IPv6 DHCP DHCPv6 client module of Cisco Adaptive Security Appliance ASA Software, Cisco Firepower Threat Defense FTD Software, Cisco IOS Software, and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an...

6.8CVSS7.3AI score0.00678EPSS
Exploits0References1
f5
f5
added 2023/02/21 8:1 p.m.48 views

K08306700: DHCP client vulnerability CVE-2018-5732

Security Advisory Description An out-of-bound memory access flaw was found in the way dhclient processed a DHCP response packet. A malicious DHCP server could potentially use this flaw to crash dhclient processes running on DHCP client machines via a crafted DHCP response packet. CVE-2018-5732...

7.5CVSS7.5AI score0.0496EPSS
Exploits0Affected Software18
f5
f5
added 2023/02/21 8:1 p.m.51 views

K32541890: DHCP Client Script Code Execution vulnerability CVE-2018-1111

Security Advisory Description DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. A malicious DHCP server, or an attacker on the local network able to spoof DHCP...

7.9CVSS8.2AI score0.9797EPSS
Exploits14
f5
f5
added 2023/02/21 7:51 p.m.59 views

K13219: DHCP Client vulnerability CVE-2011-0997

Security Advisory Description The ISC Dynamic Host Configuration Protocol DHCP client, dhclient , in versions 3.0.x through 4.2.x before 4.2.1-P1, 3.1-ESV before 3.1-ESV-R1, and 4.1-ESV before 4.1-ESV-R2 allows remote attackers to execute arbitrary commands by way of shell metacharacters in a...

7.1AI score
Exploits0
f5
f5
added 2023/02/21 6:55 p.m.50 views

K41190253: Multiple RTOS vulnerabilities

Security Advisory Description CVE-2019-12255 Wind River VxWorks 6.6 through 6.9 has a Buffer Overflow in the TCP component issue 1 of 4. This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow. CVE-2019-12256 Wind River VxWorks 6.9 and vx7 has a Buffer...

9.8CVSS8AI score0.84177EPSS
Exploits7
susecve
susecve
added 2023/02/15 6:18 a.m.2 views

SUSE CVE-2005-1848

The dhcpcd DHCP client before 1.3.22 allows remote attackers to cause a denial of service daemon crash via unknown vectors that cause an out-of-bounds memory read...

5CVSS6.8AI score0.01926EPSS
Exploits0References4
susecve
susecve
added 2023/02/15 5:48 a.m.4 views

SUSE CVE-2012-1088

iproute2 before 3.3.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file used by 1 configure or 2 examples/dhcp-client-script...

3.3CVSS6.4AI score0.00352EPSS
Exploits0References3
susecve
susecve
added 2023/02/15 5:6 a.m.4 views

SUSE CVE-2016-2148

Heap-based buffer overflow in the DHCP client udhcpc in BusyBox before 1.25.0 allows remote attackers to have unspecified impact via vectors involving OPTION6RD parsing...

9.8CVSS7.3AI score0.28429EPSS
Exploits4References10
susecve
susecve
added 2023/02/15 5:6 a.m.3 views

SUSE CVE-2016-2147

Integer overflow in the DHCP client udhcpc in BusyBox before 1.25.0 allows remote attackers to cause a denial of service crash via a malformed RFC1035-encoded domain name, which triggers an out-of-bounds heap write...

7.5CVSS6.5AI score0.08055EPSS
Exploits4References10
nessus
nessus
added 2023/01/25 12:0 a.m.29 views

Siemens VxWorks-based Industrial Products Heap Overflow (CVE-2021-29998)

An issue was discovered in Wind River VxWorks before 6.5. There is a possible heap overflow in dhcp client. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if descriptio...

9.8CVSS8.4AI score0.02373EPSS
Exploits0References5
bdu_fstec
bdu_fstec
added 2022/11/21 12:0 a.m.11 views

The vulnerability of Windows operating system DHCP clients, related to insecure management of privileges, allows attackers to elevate their own privileges.

The vulnerability of the Windows operating system’s DHCP client is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...

7.8CVSS7.2AI score0.00542EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2022/11/03 12:0 a.m.9 views

The vulnerability of the Windows operating system’s DHCP client allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows operating system’s DHCP client is related to the lack of protection for service data. Exploiting this vulnerability can allow a perpetrator to gain unauthorized access to protected information...

7.8CVSS6.2AI score0.00548EPSS
Exploits0References2
cnvd
cnvd
added 2022/10/13 12:0 a.m.38 views

Microsoft Windows DHCP Client Information Disclosure Vulnerability

Microsoft Windows is a set of operating systems for personal devices from Microsoft Corporation. Microsoft Windows DHCP Client has an information disclosure vulnerability that stems from insufficient protection of sensitive information on the network system or product, which can be exploited by...

2.8AI score0.00548EPSS
Exploits0Affected Software1
cnvd
cnvd
added 2022/10/13 12:0 a.m.32 views

Microsoft Windows DHCP Client privilege elevation vulnerability

Microsoft Windows is a set of operating systems for personal devices from Microsoft Corporation USA.An elevation of privilege vulnerability exists in Microsoft Windows DHCP Client, which stems from improper privilege assignment in the application and can be exploited by an attacker to cause an...

5AI score0.00542EPSS
Exploits0
nvd
nvd
added 2022/10/11 7:15 p.m.20 views

CVE-2022-38026

Windows DHCP Client Information Disclosure Vulnerability...

5.5CVSS0.00548EPSS
Exploits0References2
osv
osv
added 2022/10/11 7:15 p.m.3 views

CVE-2022-37980

Windows DHCP Client Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.00542EPSS
Exploits0References2
attackerkb
attackerkb
added 2022/10/11 7:15 p.m.3 views

CVE-2022-37980

Windows DHCP Client Elevation of Privilege Vulnerability...

7.8CVSS7.1AI score0.00542EPSS
Exploits0References3Affected Software6
Rows per page
Query Builder