Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dhcp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6692
Cisco IOS XE 3.8S(.2) and previous versions does not properly use a DHCP pool during assignment of an IP address, which allows remote authenticated users to cause a denial of service (device reload) via an AAA packet that triggers an address requirement, aka Bug ID CSCuh04949.
Cisco Ios Xe 3.8s\\(.0\\)
Cisco Ios Xe 3.7.0s
Cisco Ios Xe 3.7.1s
Cisco Ios Xe 3.7.2s
Cisco Ios Xe 3.8s\\(.1\\)
Cisco Ios Xe 3.8.0s
Cisco Ios Xe
NA
CVE-2014-3271
The DHCPv6 implementation in Cisco IOS XR allows remote malicious users to cause a denial of service (device crash) via a malformed packet, aka Bug IDs CSCum85558, CSCum20949, CSCul61849, and CSCul71149.
Cisco Ios Xr
4.3
CVSSv3
CVE-2018-15392
A vulnerability in the DHCP service of Cisco Industrial Network Director could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition. The vulnerability is due to improper handling of DHCP lease requests. An attacker could exploit this vuln...
Cisco Industrial Network Director
NA
CVE-2012-4623
The DHCPv6 server in Cisco IOS 12.2 up to and including 12.4 and 15.0 up to and including 15.2 and IOS XE 2.1.x up to and including 2.6.x, 3.1.xS prior to 3.1.4S, 3.1.xSG and 3.2.xSG prior to 3.2.5SG, 3.2.xS, 3.2.xXO, 3.3.xS, and 3.3.xSG prior to 3.3.1SG allows remote malicious u...
Cisco Ios Xe 2.2.1
Cisco Ios Xe 2.2.2
Cisco Ios Xe 2.4
Cisco Ios Xe 2.4.0
Cisco Ios Xe 2.5.2
Cisco Ios Xe 2.6.0
Cisco Ios Xe 2.2.3
Cisco Ios Xe 2.3
Cisco Ios Xe 2.4.1
Cisco Ios Xe 2.4.2
Cisco Ios Xe 2.6.1
Cisco Ios Xe 2.6.2
Cisco Ios Xe 2.1
Cisco Ios Xe 2.1.0
Cisco Ios Xe 2.3.0
Cisco Ios Xe 2.3.1
Cisco Ios Xe 2.4.3
Cisco Ios Xe 2.4.4
Cisco Ios Xe 2.1.1
Cisco Ios Xe 2.1.2
Cisco Ios Xe 2.2
Cisco Ios Xe 2.3.1t
5.2
CVSSv3
CVE-2019-12703
A vulnerability in the web-based management interface of Cisco SPA122 ATA with Router Devices could allow an unauthenticated, adjacent malicious user to conduct cross-site scripting attacks. The vulnerability is due to insufficient validation of user-supplied input by the web-bas...
Cisco Spa122 Firmware 1.4.1
Cisco Spa122 Firmware
NA
CVE-2015-0743
Cisco Headend System Release allows remote malicious users to cause a denial of service (DHCP and TFTP outage) via a flood of crafted UDP traffic, aka Bug ID CSCus04097.
Cisco Headend Digital Broadband Delivery System -
Cisco Headend System Release 2.5
Cisco Headend System Release 2.7
Cisco Headend System Release 3.2
Cisco Headend System Release 3.5
Cisco Headend System Release I4.3
Cisco Headend System Release 3.7
8.8
CVSSv3
CVE-2017-17867
Inteno iopsys 2.0-3.14 and 4.0 devices allow remote authenticated users to execute arbitrary OS commands by modifying the leasetrigger field in the odhcpd configuration to specify an arbitrary program, as demonstrated by a program located on an SMB share. This issue existed becau...
Intenogroup Iopsys
Intenogroup Iopsys 4.0
1 EDB exploit
1 Github repository
8.6
CVSSv3
CVE-2019-1814
A vulnerability in the interactions between the DHCP and TFTP features for Cisco Small Business 300 Series (Sx300) Managed Switches could allow an unauthenticated, remote malicious user to cause the device to become low on system memory, which in turn could lead to an unexpected ...
Cisco Sf302-08pp Firmware
Cisco Sf302-08mpp Firmware
Cisco Sg300-10pp Firmware
Cisco Sg300-10mpp Firmware
Cisco Sf300-24pp Firmware
Cisco Sf300-48pp Firmware
Cisco Sg300-28pp Firmware
Cisco Sf300-08 Firmware
Cisco Sf300-48p Firmware
Cisco Sg300-10mp Firmware
Cisco Sg300-10p Firmware
Cisco Sg300-10 Firmware
Cisco Sg300-28p Firmware
Cisco Sf300-24p Firmware
Cisco Sf302-08mp Firmware
Cisco Sg300-28 Firmware
Cisco Sf300-48 Firmware
Cisco Sg300-20 Firmware
Cisco Sf302-08p Firmware
Cisco Sg300-52 Firmware
Cisco Sf300-24 Firmware
Cisco Sf302-08 Firmware
7.5
CVSSv3
CVE-2016-1504
dhcpcd prior to 6.10.0 allows remote malicious users to cause a denial of service (invalid read and crash) via vectors related to the option length.
Dhcpcd Project Dhcpcd
7.5
CVSSv3
CVE-2018-0372
A vulnerability in the DHCPv6 feature of the Cisco Nexus 9000 Series Fabric Switches in Application-Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote malicious user to cause the device to run low on system memory, which could result in a Denial of Service (...
Cisco Nx-os 13.0\\(1k\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »