Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-6472

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A packet containing a malformed DUID can cause the Kea DHCPv6 server process kea-dhcp6 to exit due to an assertion failure. Versions affected: 1.4.0 to 1.5.0,...

6.5CVSS6.4AI score0.00796EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/10/16 5:22 p.m.23 views

CVE-2019-6474 A packet containing a malformed DUID can cause the kea-dhcp6 server to terminate

A missing check on incoming client requests can be exploited to cause a situation where the Kea server's lease storage contains leases which are rejected as invalid when the server tries to load leases from storage on restart. If the number of such leases exceeds a hard-coded limit in the Kea cod...

5.7CVSS6.3AI score0.00712EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/10/16 5:22 p.m.24 views

CVE-2019-6473 A packet containing a malformed DUID can cause the kea-dhcp6 server to terminate

An invalid hostname option can trigger an assertion failure in the Kea DHCPv4 server process kea-dhcp4, causing the server process to exit. Versions affected: 1.4.0 to 1.5.0, 1.6.0-beta1, and 1.6.0-beta2...

6.5CVSS6.3AI score0.00797EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2019/08/28 12:0 a.m.26 views

ISC KEA -- Multiple vulnerabilities

Internet Systems Consortium, Inc. reports: A packet containing a malformed DUID can cause the kea-dhcp6 server to terminate CVE-2019-6472 Medium An invalid hostname option can cause the kea-dhcp4 server to terminate CVE-2019-6473 Medium An oversight when validating incoming client requests can le...

6.5CVSS1.6AI score0.00797EPSS
Exploits0References1
CVE
CVE
added 2015/12/22 11:0 p.m.47 views

CVE-2015-8373

CVE-2015-8373 affects ISC Kea: the kea-dhcp4 and kea-dhcp6 servers (versions 0.9.2 and 1.0.0-beta) are vulnerable when certain debugging settings are enabled, allowing a remote attacker to cause a daemon crash (DoS) by sending a malformed packet. Public information confirms the vulnerability and ...

7.1CVSS6.3AI score0.03706EPSS
Exploits0References3Affected Software1
FreeBSD
FreeBSD
added 2015/12/15 12:0 a.m.31 views

kea -- unexpected termination while handling a malformed packet

ISC Support reports: ISC Kea may terminate unexpectedly crash while handling a malformed client packet. Related defects in the kea-dhcp4 and kea-dhcp6 servers can cause the server to crash during option processing if a client sends a malformed packet. An attacker sending a crafted malformed packe...

7.1CVSS6.4AI score0.03706EPSS
Exploits0References1
Rows per page
Query Builder