419 matches found
CVE-2026-54128
Use after free in Windows DHCP Client allows an unauthorized attacker to execute code locally...
CVE-2026-54128 Windows DHCP Client Remote Code Execution Vulnerability
...
CVE-2026-54128
CVE-2026-54128 is a Windows DHCP Client use-after-free vulnerability that could allow an unauthenticated local attacker to execute code. The issue, described in the NVD entry and echoed by TALOS, affects the Windows DHCP Client component and is known to have been exploited in the wild (per CIRCL ...
CVE-2026-50683 Windows DHCP Client Elevation of Privilege Vulnerability
...
CVE-2026-50683
CVE-2026-50683 is a Windows DHCP Client/Server heap-based buffer overflow that enables an authenticated attacker on an adjacent network to elevate privileges. Public details in the initial entry cite a heap-based overflow and adjacent-access attack path with high impact (C:H, I:H, A:H) and a CVSS...
CVE-2026-49181 Windows DHCP Client Elevation of Privilege Vulnerability
...
CVE-2026-49181
The CVE-2026-49181 entry describes an Integer underflow in the Windows DHCP Client that can allow an unauthorized attacker to elevate privileges over a network. Affected component: Windows DHCP Client (network stack on Windows). Root cause: wrap/underflow in the DHCP client handling. Impact: priv...
Windows DHCP Client Elevation of Privilege Vulnerability
Integer underflow wrap or wraparound in Windows DHCP Client allows an unauthorized attacker to elevate privileges over a network...
CVE-2026-14258
A flaw was found in dhcpcd's IPv6 Neighbor Discovery Router Advertisement processing. A specially crafted IPv6 Router Advertisement containing a zero-length Neighbor Discovery option can bypass validation during packet storage and later be reparsed without adequate validation, causing the parser ...
CVE-2026-56117
dhcpcd through 10.3.2, fixed in commit 78ea09e, contains a heap use-after-free vulnerability in the control socket handling within src/control.c that allows local unprivileged attackers to trigger memory corruption when privilege separation is disabled. Attackers can connect to the control socket...
CVE-2026-56116 dhcpcd Memory Leak DoS via IPv6 Router Advertisement Handling
dhcpcd through 10.3.2, fixed in commit 708b4a5, contains a memory leak vulnerability in the IPv6 Router Advertisement route information handling that allows an unauthenticated same-link attacker to cause denial of service by sending crafted Router Advertisements. Attackers can repeatedly send...
PT-2026-51565
Name of the Vulnerable Software and Affected Versions dhcpcd versions prior to 10.3.2 Description An issue in the IPv6 Router Advertisement route information handling allows an unauthenticated attacker on the same link to cause a denial of service. By repeatedly sending crafted Router...
CVE-2026-44815
Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network...
CVE-2026-44815 DHCP Client Service Remote Code Execution Vulnerability
...
EUVD-2026-35751
Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network...
CVE-2026-44815 DHCP Client Service Remote Code Execution Vulnerability
...
CVE-2026-45608
Out-of-bounds read in Windows DHCP Client allows an unauthorized attacker to disclose information locally...
CVE-2026-45634 Windows DHCP Client Information Disclosure Vulnerability
...
CVE-2026-45634 Windows DHCP Client Information Disclosure Vulnerability
...
DHCP Client Service Remote Code Execution Vulnerability
Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network...