Lucene search
K

16 matches found

OSV
OSV
added 2026/06/25 6:43 p.m.5 views

GO-2026-5304 OpenBao: Cross-namespace lease revocation/renewal via canonical sys/leases/{revoke,renew} — incomplete fix of CVE-2026-45808 in github.com/openbao/openbao

OpenBao: Cross-namespace lease revocation/renewal via canonical sys/leases/revoke,renew — incomplete fix of CVE-2026-45808 in github.com/openbao/openbao...

5.8AI score
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/04/17 2:40 p.m.7 views

Security update for NetworkManager

This update for NetworkManager fixes the following issue: Security fixes: CVE-2025-9615: Fixed non-admin user using others' certificates bsc1257359. Other fixes: Don't renew DHCP lease when software devices' MAC is empty bsc1225498. Patch Instructions: To install this SUSE update use the SUSE...

5.5CVSS5.7AI score0.00162EPSS
Exploits0References6
OSV
OSV
added 2026/04/17 2:40 p.m.4 views

SUSE-SU-2026:1443-1 Security update for NetworkManager

This update for NetworkManager fixes the following issue: Security fixes: - CVE-2025-9615: Fixed non-admin user using others' certificates bsc1257359. Other fixes: - Don't renew DHCP lease when software devices' MAC is empty bsc1225498...

3.3CVSS5.7AI score0.00162EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/10 5:41 a.m.6 views

CVE-2025-69542

A Command Injection Vulnerability has been discovered in the DHCP daemon service of D-Link DIR895LA1 v102b07. The vulnerability exists in the lease renewal processing logic where the DHCP hostname parameter is directly concatenated into a system command without proper sanitization. When a DHCP...

9.8CVSS7.7AI score0.0843EPSS
Exploits1References1
NVD
NVD
added 2026/01/09 5:15 p.m.8 views

CVE-2025-69542

A Command Injection Vulnerability has been discovered in the DHCP daemon service of D-Link DIR895LA1 v102b07. The vulnerability exists in the lease renewal processing logic where the DHCP hostname parameter is directly concatenated into a system command without proper sanitization. When a DHCP...

9.8CVSS0.0843EPSS
Exploits1References1
OSV
OSV
added 2026/01/09 5:15 p.m.4 views

CVE-2025-69542

A Command Injection Vulnerability has been discovered in the DHCP daemon service of D-Link DIR895LA1 v102b07. The vulnerability exists in the lease renewal processing logic where the DHCP hostname parameter is directly concatenated into a system command without proper sanitization. When a DHCP...

9.8CVSS5.8AI score0.0843EPSS
Exploits1References1
CVE
CVE
added 2026/01/09 12:0 a.m.24 views

CVE-2025-69542

The CVE-2025-69542 entry affects D-Link DIR895LA1, specifically the DHCP daemon (DIR895LA1 v102b07). The issue is in lease renewal handling where the DHCP hostname is concatenated into a system command without sanitization, allowing arbitrary commands to run with root privileges. Public reference...

9.8CVSS7.4AI score0.0843EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/09 12:0 a.m.3 views

CVE-2025-69542

A Command Injection Vulnerability has been discovered in the DHCP daemon service of D-Link DIR895LA1 v102b07. The vulnerability exists in the lease renewal processing logic where the DHCP hostname parameter is directly concatenated into a system command without proper sanitization. When a DHCP...

7.4AI score0.0843EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/01/09 12:0 a.m.7 views

PT-2026-1954

Name of the Vulnerable Software and Affected Versions D-Link DIR895LA1 version 102b07 Description A command injection issue exists in the DHCP daemon service. The problem is in how lease renewals are handled, specifically where the DHCP hostname parameter is used in system commands without...

9.8CVSS7.5AI score0.0843EPSS
Exploits1References7
Cvelist
Cvelist
added 2026/01/09 12:0 a.m.31 views

CVE-2025-69542

A Command Injection Vulnerability has been discovered in the DHCP daemon service of D-Link DIR895LA1 v102b07. The vulnerability exists in the lease renewal processing logic where the DHCP hostname parameter is directly concatenated into a system command without proper sanitization. When a DHCP...

0.0843EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 6:7 a.m.3 views

SUSE CVE-2008-3350

dnsmasq 2.43 allows remote attackers to cause a denial of service daemon crash by 1 sending a DHCPINFORM while lacking a DHCP lease, or 2 attempting to renew a nonexistent DHCP lease for an invalid subnet as an "unknown client," a different vulnerability than CVE-2008-3214...

5CVSS7AI score0.0169EPSS
Exploits1References3
Rockylinux
Rockylinux
added 2022/10/25 7:22 a.m.10 views

NetworkManager bug fix and enhancement update

An update is available for NetworkManager. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list NetworkManager is a system network service that manages network device...

1.6AI score
Exploits0
HashiCorp Security Advisories
HashiCorp Security Advisories
added 2021/05/20 7:29 p.m.5 views

Vault Renewed Nearly-Expired Leases With Incorrect Non-Expiring TTLs

Summary Vault and Vault Enterprise “Vault” allowed the renewal of nearly-expired token leases and dynamic secret leases specifically, those within 1 second of their maximum TTL, which caused them to be incorrectly treated as non-expiring during subsequent use. This vulnerability, CVE-2021-32923,...

7.4CVSS6.9AI score0.01376EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/03/01 12:0 a.m.23 views

Scientific Linux Security Update : dhcp on SL6.x i386/x86_64 (20130221)

A flaw was found in the way the dhcpd daemon handled the expiration time of IPv6 leases. If dhcpd's configuration was changed to reduce the default IPv6 lease time, lease renewal requests for previously assigned leases could cause dhcpd to crash. CVE-2012-3955 This update also fixes the following...

7.1CVSS6.4AI score0.21653EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/02/22 12:0 a.m.37 views

RedHat Update for dhcp RHSA-2013:0504-02

Check for the Version of dhcp OpenVAS Vulnerability Test RedHat Update for dhcp RHSA-2013:0504-02 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

7.1CVSS6.5AI score0.21653EPSS
Exploits0References2
OSV
OSV
added 2008/07/18 4:41 p.m.3 views

DEBIAN-CVE-2008-3214

dnsmasq 2.25 allows remote attackers to cause a denial of service daemon crash by 1 renewing a nonexistent lease or 2 sending a DHCPREQUEST for an IP address that is not in the same network, related to the DHCP NAK response from the daemon...

7.8CVSS6.8AI score0.02525EPSS
Exploits1References1
Rows per page
Query Builder