Lucene search
+L

704 matches found

OSV
OSV
added 2025/11/21 9:17 a.m.8 views

CLSA-2025-1763716672 edk2: Fix of 7 CVEs

CVE-2023-45229: fix IPv6 malformed option handling to prevent parsing loop - CVE-2023-45230: fix DHCPv6 ServerID length validation to prevent buffer overflow - CVE-2023-45231: fix IPv6 Redirect bounds checks to avoid out-of-bounds access - CVE-2023-45232: fix IPv6 destination option parsing to...

8.8CVSS6AI score0.02101EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.29 views

Siemens SIMATIC S7-1500 Authentication Bypass by Spoofing (CVE-2020-13529)

An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigure the server. Th...

6.1CVSS6.6AI score0.01399EPSS
Exploits1References4
OSV
OSV
added 2025/11/12 2:23 p.m.8 views

CLSA-2025-1762957404 dhcp: Fix of CVE-2022-3094

Rebuild with the latest ELS version of bind to address CVE-2022-3094...

7.5CVSS7.1AI score0.13108EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/11 12:0 a.m.3 views

RHEL 10 : kea (RHSA-2025:21006)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:21006 advisory. DHCP implementation from Internet Systems Consortium, Inc. that features fully functional DHCPv4, DHCPv6 and Dynamic DNS servers. Both DHCP servers...

7.5CVSS5.6AI score0.00495EPSS
Exploits0References4
OSV
OSV
added 2025/11/11 12:0 a.m.9 views

ALSA-2025:21038 Important: kea security update

DHCP implementation from Internet Systems Consortium, Inc. that features fully functional DHCPv4, DHCPv6 and Dynamic DNS servers. Both DHCP servers fully support server discovery, address assignment, renewal, rebinding and release. The DHCPv6 server supports prefix delegation. Both servers suppor...

7.5CVSS6.8AI score0.00387EPSS
Exploits0References4
Rosalinux
Rosalinux
added 2025/11/10 6:21 a.m.22 views

Advisory ROSA-SA-2025-3066

Software: dhcp 4.4.2 OS: ROSA Virtualization 3.0 unaffected versions = dhcp-4.4.2-19.b1.rv30 affected versions dhcp-4.4.2-19.b1.rv30 CVE-ID: CVE-2021-25217 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A software vulnerability providing the DHCP Dynamic Host Configuration Protocol service to the network is...

7.4CVSS7.1AI score0.06118EPSS
Exploits1
Rosalinux
Rosalinux
added 2025/11/09 1:37 p.m.13 views

Advisory ROSA-SA-2025-3044

Software: dhcp 4.4.2 OS: ROSA Virtualization 3.1 unaffected versions = dhcp-4.4.2-19.b1.rv31 affected versions dhcp-4.4.2-19.b1.rv31 CVE-ID: CVE-2021-25217 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A software vulnerability providing the DHCP Dynamic Host Configuration Protocol service to the network is...

7.4CVSS9.2AI score0.06118EPSS
Exploits1
Cvelist
Cvelist
added 2025/10/27 3:2 a.m.15 views

CVE-2025-12209 Tenda O3 setDhcpConfig GetValue stack-based overflow

A vulnerability was determined in Tenda O3 1.0.0.102478. Affected is the function SetValue/GetValue of the file /goform/setDhcpConfig. Executing a manipulation of the argument dhcpEn can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been publicly...

9CVSS0.00935EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2025/10/27 1:7 a.m.3 views

CVE-2025-12200

Removed by vendor...

4.5AI score0.00012EPSS
Exploits0
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.7 views

编号撤回

dnsmasq is a lightweight DNS forwarding and DHCP, TFTP server written in C. edb is a cross-platform AArch32/x86/x86-64 debugger. This CVE number has been withdrawn...

4.3AI score0.00012EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/22 6:30 p.m.6 views

EUVD-2025-35584

Tenda AC6 V2.0 15.03.06.50 was discovered to contain a stack overflow in the page parameter in the DhcpListClient function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

7.1AI score0.00446EPSS
Exploits1References2
CVE
CVE
added 2025/10/22 12:0 a.m.17 views

CVE-2025-60338

The CVE-2025-60338 entry is tied to the Tenda AC6 router (V2.0, 15.03.06.50) and describes a stack overflow in the DhcpListClient function’s page parameter. Multiple connected sources (CNVD-2025-26959, Red Hat CVE, CNNVD, CNNVD-202510-2830, PT-2025-43377, etc.) confirm a buffer/stack overflow tha...

7.5CVSS7.2AI score0.00446EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/21 6:33 p.m.14 views

CVE-2025-55086

In NetXDuo version before 6.4.4, a networking support module for Eclipse Foundation ThreadX, in the DHCPV6 client there was an unchecked index extracting the server DUID from the server reply. With a crafted packet, an attacker could cause an out of memory read...

9.8CVSS6.8AI score0.00372EPSS
Exploits0References1
NVD
NVD
added 2025/10/20 6:15 p.m.6 views

CVE-2025-55086

In NetXDuo version before 6.4.4, a networking support module for Eclipse Foundation ThreadX, in the DHCPV6 client there was an unchecked index extracting the server DUID from the server reply. With a crafted packet, an attacker could cause an out of memory read...

9.8CVSS0.00372EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/20 12:0 a.m.9 views

Eclipse ThreadX NetX Duo 安全漏洞

Eclipse ThreadX NetX Duo is an IPv4 and IPv6 dual network stack for Eclipse ThreadX open source. A security vulnerability exists in Eclipse ThreadX NetX Duo versions prior to 6.4.4 that stems from a DHCPV6 client not checking the server DUID index in the server reply, which could lead to an...

9.8CVSS6.6AI score0.00372EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/18 5:45 a.m.8 views

CVE-2025-55093

In NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in nxipv4packetreceive when handling unicast DHCP messages that could cause corruption of 4 bytes of memory...

6.9CVSS6.9AI score0.0029EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/17 5:11 a.m.8 views

EUVD-2025-34872

In NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in nxipv4packetreceive when handling unicast DHCP messages that could cause corruption of 4 bytes of memory...

6.9CVSS6.4AI score0.0029EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-3607

Malware in sbrugna...

4.3CVSS6.3AI score0.09402EPSS
Exploits0References21
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-3119

Malware in sbrugna...

5CVSS6.1AI score0.03942EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-12475

Malware in sbrugna...

8.8CVSS8.6AI score0.00836EPSS
Exploits0References3
Rows per page
Query Builder