Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dhcp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-5499
The remember feature in the DHCP server in Cisco IOS allows remote malicious users to cause a denial of service (device reload) by acquiring a lease and then sending a DHCPRELEASE message, aka Bug ID CSCuh46822.
Cisco Ios -
NA
CVE-2004-1111
Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote malicious users to cause a d...
Cisco Ios 12.2\\(18\\)ew
Cisco Ios 12.2\\(18\\)ewa
Cisco Ios 12.2\\(18\\)s
Cisco Ios 12.2\\(18\\)se
Cisco Ios 12.2\\(14\\)sz
Cisco Ios 12.2\\(20\\)ew
Cisco Ios 12.2\\(18\\)sv
Cisco Ios 12.2\\(18\\)sw
Cisco Multiservice Platform 2650
Cisco Multiservice Platform 2650xm
Cisco Multiservice Platform 2651
Cisco Multiservice Platform 2651xm
Cisco Catalyst 7600
Cisco 7500 Router
Cisco 7600 Router
Cisco 7200 Router
Cisco 7300 Router
NA
CVE-2011-0097
Integer underflow in Microsoft Excel 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows remote malicious users t...
Microsoft Office 2004
Microsoft Office 2008
Microsoft Excel 2010
Microsoft Excel Viewer -
Microsoft Open Xml File Format Converter
Microsoft Office Compatibility Pack 2007
Microsoft Excel 2007
Microsoft Excel -
Microsoft Excel 2003
Microsoft Excel 2002
7.5
CVSSv3
CVE-2020-3272
A vulnerability in the DHCP server of Cisco Prime Network Registrar could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient input validation of incoming DHCP traffic. An att...
Cisco Prime Network Registrar
6.5
CVSSv3
CVE-2016-6424
The DHCP Relay implementation in Cisco Adaptive Security Appliance (ASA) Software 8.4.7.29 and 9.1.7.4 allows remote malicious users to cause a denial of service (interface wedge) via a crafted rate of DHCP packet transmission, aka Bug ID CSCuy66942.
Cisco Adaptive Security Appliance Software 8.4.7.29
Cisco Adaptive Security Appliance Software 9.1\\(7\\)4
9.8
CVSSv3
CVE-2011-1930
In klibc 1.5.20 and 1.5.21, the DHCP options written by ipconfig to /tmp/net-$DEVICE.conf are not properly escaped. This may allow a remote malicious user to send a specially crafted DHCP reply which could execute arbitrary code with the privileges of any process which sources DH...
Klibc Project Klibc
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 EDB exploit
NA
CVE-2024-3661
DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disru...
3 Github repositories
2 Articles
NA
CVE-2014-3270
The DHCPv6 implementation in Cisco IOS XR allows remote malicious users to cause a denial of service (process hang) via a malformed packet, aka Bug ID CSCul80924.
Cisco Ios Xr
NA
CVE-2023-40480
NETGEAR RAX30 DHCP Server Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent malicious users to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. ...
NA
CVE-2013-6692
Cisco IOS XE 3.8S(.2) and previous versions does not properly use a DHCP pool during assignment of an IP address, which allows remote authenticated users to cause a denial of service (device reload) via an AAA packet that triggers an address requirement, aka Bug ID CSCuh04949.
Cisco Ios Xe 3.8s\\(.0\\)
Cisco Ios Xe 3.7.0s
Cisco Ios Xe 3.7.1s
Cisco Ios Xe 3.7.2s
Cisco Ios Xe 3.8s\\(.1\\)
Cisco Ios Xe 3.8.0s
Cisco Ios Xe
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »