Linux Distros Unpatched Vulnerability : CVE-2014-7912

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getoption function in dhcp.c in dhcpcd before 6.2.0, as used in dhcpcd 5.x in Android before 5.1 and other products, does not validate the relationship...

PT-2023-12473 · WordPress · Kiwi Social Share

Name of the Vulnerable Software and Affected Versions: Kiwi Social Share plugin for WordPress version 2.1.0 Description: The issue is related to an authorization bypass due to a missing capability check on the kiwi social share get option function, which is called via the "kiwi social share get...

SUSE CVE-2014-6060

The getoption function in dhcpcd 4.0.0 through 6.x before 6.4.3 allows remote DHCP servers to cause a denial of service by resetting the DHOOPTIONSOVERLOADED option in the 1 bootfile or 2 servername section, which triggers the option to be processed again...

SUSE CVE-2018-20679

An issue was discovered in BusyBox before 1.30.0. An out of bounds read in udhcp components consumed by the DHCP server, client, and relay allows a remote attacker to leak sensitive information from the stack by sending a crafted DHCP message. This is related to verification in udhcpgetoption in...

DEBIAN-CVE-2022-4396

A vulnerability was found in RDFlib pyrdfa3 and classified as problematic. This issue affects the function getoption of the file pyRdfa/init.py. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of the patch is ffd1d62dd50d5f4190013b39cedcdfbd81f3ce3e...

PT-2022-27047 · Unknown +1 · Rdflib Pyrdfa3 +1

Name of the Vulnerable Software and Affected Versions: RDFlib pyrdfa3 affected versions not specified Description: A vulnerability was found in RDFlib pyrdfa3, classified as problematic. This issue affects the function get option of the file pyRdfa/ init .py. The manipulation leads to cross site...

CVE-2022-3383

The Ultimate Member plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2.5.0 via the getoptionvaluefromcallback function that accepts user supplied input and passes it through calluserfunc. This makes it possible for authenticated attackers, with...

UBUNTU-CVE-2014-7912

The getoption function in dhcp.c in dhcpcd before 6.2.0, as used in dhcpcd 5.x in Android before 5.1 and other products, does not validate the relationship between length fields and the amount of data, which allows remote DHCP servers to execute arbitrary code or cause a denial of service memory...

Google Android 'get_option()' function remote code execution vulnerability

Android is an operating system based on the Linux open kernel and is a mobile operating system announced on November 5, 2007 by Google Inc. Google Android suffers from a security vulnerability in the DHCP option in parsing DHCP ACK packets, which can be exploited by an attacker to execute arbitra...

DEBIAN-CVE-2012-2322

Integer overflow in the dhcpv6getoption function in gdhcp/client.c in ConnMan before 0.85 allows remote attackers to cause a denial of service infinite loop and crash via an invalid length value in a DHCP packet...