Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dhcp vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2023-32955
Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in DHCP Client Functionality in Synology Router Manager (SRM) prior to 1.2.5-8227-6 and 1.3.1-9346-3 allows man-in-the-middle malicious users to execute arbitrary co...
Synology Router Manager
6.5
CVSSv3
CVE-2023-28488
client.c in gdhcp in ConnMan up to and including 1.41 could be used by network-adjacent attackers (operating a crafted DHCP server) to cause a stack-based buffer overflow and denial of service, terminating the connman process.
Intel Connman
1 Github repository
8.8
CVSSv3
CVE-2023-28231
DHCP Server Service Remote Code Execution Vulnerability
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2019 -
Microsoft Windows Server 2022 -
4 Github repositories
5.9
CVSSv3
CVE-2022-46415
DJI Spark 01.00.0900 allows remote malicious users to prevent legitimate terminal connections by exhausting the DHCP IP address pool. To accomplish this, the attacker would first need to connect to the device's internal Wi-Fi network (e.g., by guessing the password). Then, t...
Dji Spark Firmware 01.00.0900
5.9
CVSSv3
CVE-2022-46416
Parrot Bebop 4.7.1. allows remote malicious users to prevent legitimate terminal connections by exhausting the DHCP IP address pool. To accomplish this, the attacker would first need to connect to the device's internal Wi-Fi network (e.g., by guessing the password). Then, th...
Parrot Bebop Firmware 4.7.1
7.5
CVSSv3
CVE-2023-20080
A vulnerability in the IPv6 DHCP version 6 (DHCPv6) relay and server features of Cisco IOS and IOS XE Software could allow an unauthenticated, remote malicious user to trigger a denial of service (DoS) condition. This vulnerability is due to insufficient validation of data bounda...
Cisco Ios 15.2\\(4\\)ea
Cisco Ios 15.4\\(2\\)s2
Cisco Ios Xe 3.13.2s
Cisco Ios 15.3\\(2\\)s1
Cisco Ios Xe 3.10.6s
Cisco Ios 15.1\\(2\\)sy10
Cisco Ios Xe 3.6.5be
Cisco Ios Xe 3.13.6s
Cisco Ios 15.5\\(1\\)t1
Cisco Ios 15.4\\(2\\)s4
Cisco Ios 15.2\\(2\\)e5b
Cisco Ios 15.3\\(2\\)s
Cisco Ios Xe 3.14.4s
Cisco Ios Xe 3.7.2ts
Cisco Ios 15.2\\(2\\)sy
Cisco Ios 15.6\\(2\\)sp2
Cisco Ios Xe 3.7.4e
Cisco Ios Xe 3.15.1cs
Cisco Ios 15.6\\(2\\)t3
Cisco Ios Xe 3.9.0e
Cisco Ios 15.6\\(1\\)t2
Cisco Ios 15.2\\(3\\)e2
5.9
CVSSv3
CVE-2023-20081
A vulnerability in the IPv6 DHCP (DHCPv6) client module of Cisco Adaptive Security Appliance (ASA) Software, Cisco Firepower Threat Defense (FTD) Software, Cisco IOS Software, and Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a denial of ser...
Cisco Adaptive Security Appliance Software 9.16.1
Cisco Adaptive Security Appliance Software 9.8.2
Cisco Adaptive Security Appliance Software 9.9.1
Cisco Adaptive Security Appliance Software 9.9.1.2
Cisco Adaptive Security Appliance Software 9.9.2.50
Cisco Adaptive Security Appliance Software 9.10.1.30
Cisco Adaptive Security Appliance Software 9.8.3.18
Cisco Adaptive Security Appliance Software 9.8.3.26
Cisco Adaptive Security Appliance Software 9.9.2.80
Cisco Adaptive Security Appliance Software 9.12.2
Cisco Adaptive Security Appliance Software 9.8.2.24
Cisco Adaptive Security Appliance Software 9.8.3.16
Cisco Adaptive Security Appliance Software 9.8.4.29
Cisco Adaptive Security Appliance Software 9.9.1.4
Cisco Adaptive Security Appliance Software 9.9.2.36
Cisco Adaptive Security Appliance Software 9.9.2.47
Cisco Adaptive Security Appliance Software 9.10.1.2
Cisco Adaptive Security Appliance Software 9.12.2.5
Cisco Adaptive Security Appliance Software 9.12.4.4
Cisco Adaptive Security Appliance Software 9.13.1.13
Cisco Adaptive Security Appliance Software 9.8.2.20
Cisco Adaptive Security Appliance Software 9.8.4
3.3
CVSSv3
CVE-2022-29054
A missing cryptographic steps vulnerability [CWE-325] in the functions that encrypt the DHCP and DNS keys in Fortinet FortiOS version 7.2.0, 7.0.0 up to and including 7.0.5, 6.4.0 up to and including 6.4.9, 6.2.x and 6.0.x may allow an attacker in possession of the encrypted key ...
Fortinet Fortiproxy
Fortinet Fortios 7.2.0
Fortinet Fortiproxy 7.2.0
Fortinet Fortios
Fortinet Fortiproxy 7.2.1
9.8
CVSSv3
CVE-2022-41013
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigg...
Siretta Quartz-gold Firmware G5.0.1.5-210720-141020
9.8
CVSSv3
CVE-2022-41014
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigg...
Siretta Quartz-gold Firmware G5.0.1.5-210720-141020
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »