EUVD-2022-35151

Malicious code in bioql PyPI...

CentOS 9 : dhcp-4.4.2-18.b1.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dhcp-4.4.2-18.b1.el9 build changelog. - In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it...

Oracle Linux 9 : dhcp (ELSA-2023-2502)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-2502 advisory. - Fix for CVE-2022-2928 - Fix for CVE-2022-2929 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

EulerOS Virtualization 3.0.2.0 : dhcp (EulerOS-SA-2023-1727)

According to the versions of the dhcp packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, i...

EulerOS Virtualization 2.9.0 : dhcp (EulerOS-SA-2023-1656)

According to the versions of the dhcp package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it...

EulerOS Virtualization 2.9.1 : dhcp (EulerOS-SA-2023-1622)

According to the versions of the dhcp package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it...

EulerOS 2.0 SP5 : dhcp (EulerOS-SA-2023-1498)

According to the versions of the dhcp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it increases the...

SUSE CVE-2022-2928

In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it increases the option's refcount field. However, there is not a corresponding call to optiondereference to decrement the refcount field. The function addoption is on...

Huawei EulerOS: Security Advisory for dhcp (EulerOS-SA-2023-1097)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux 2 : dhcp (ALAS-2022-1874)

The version of dhcp installed on the remote host is prior to 4.2.5-79. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1874 advisory. An integer overflow vulnerability was found in the DHCP server. When the optioncodehashlookup function is called from...

ISC DHCP Denial of Service Vulnerability

ISC DHCP is an open source Dynamic Host Configuration Protocol server software from ISC. A denial of service vulnerability exists in ISC DHCP, which stems from the fact that when the function optioncodehashlookup is called from addoption, it increases the option's refcount field, but does not mak...

Denial Of Service (DoS)

libdhcp.so is vulnerable to Denial Of Service DoS. The vulnerability exists when the function optioncodehashlookup is called from addoption in option.c due to the option's refcount field which allows an attacker to crash the application via malicious input...

Code injection

In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it increases the option's refcount field. However, there is not a corresponding call to optiondereference to decrement the refcount field. The function addoption is on...

CVE-2022-2928 An option refcount overflow exists in dhcpd

In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it increases the option's refcount field. However, there is not a corresponding call to optiondereference to decrement the refcount field. The function addoption is on...

CVE-2022-2928

In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it increases the option's refcount field. However, there is not a corresponding call to optiondereference to decrement the refcount field. The function addoption is on...

CVE-2022-2928

An integer overflow vulnerability was found in the DHCP server. When the "optioncodehashlookup" function is called from "addoption", it increases the option's "refcount" field. However, there is not a corresponding call to "optiondereference" to decrement the "refcount" field. The "addoption"...

CVE-2019-15769

The handl-utm-grabber plugin before 2.6.5 for WordPress has CSRF via addoption and updateoption...

CVE-2019-15769

The CVE-2019-15769 entry concerns the WordPress plugin HandL UTM Grabber, affected prior to version 2.6.5. The vulnerability is described as a cross-site request forgery (CSRF) via add_option and update_option, effectively an authenticated option change vulnerability. Root cause details across so...

CVE-2019-15769

The handl-utm-grabber plugin before 2.6.5 for WordPress has CSRF via addoption and updateoption...