Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dhcp vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-27001
Arris TR3300 v1.0.13 were discovered to contain a command injection vulnerability in the dhcp function via the hostname parameter. This vulnerability allows malicious users to execute arbitrary commands via a crafted request.
Commscope Arris Tr3300 Firmware 1.0.13
9.8
CVSSv3
CVE-2021-31884
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versions < V3.5.4), APOGEE ...
Siemens Nucleus Source Code
Siemens Nucleus Net
Siemens Capital Vstar -
Siemens Nucleus Readystart V3
Siemens Apogee Modular Building Controller Firmware
Siemens Apogee Modular Equiment Controller Firmware
Siemens Apogee Pxc Compact Firmware
Siemens Apogee Pxc Modular Firmware
Siemens Talon Tc Compact Firmware
Siemens Talon Tc Modular Firmware
Siemens Desigo Pxc00-e.d Firmware
Siemens Desigo Pxc00-u Firmware
Siemens Desigo Pxc001-e.d Firmware
Siemens Desigo Pxc12-e.d Firmware
Siemens Desigo Pxc22-e.d Firmware
Siemens Desigo Pxc22.1-e.d Firmware
Siemens Desigo Pxc36.1-e.d Firmware
Siemens Desigo Pxc50-e.d Firmware
Siemens Desigo Pxc64-u Firmware
Siemens Desigo Pxc100-e.d Firmware
Siemens Desigo Pxc128-u Firmware
Siemens Desigo Pxc200-e.d Firmware
9.8
CVSSv3
CVE-2021-31895
A vulnerability has been identified in RUGGEDCOM ROS M2100 (All versions < V4.3.7), RUGGEDCOM ROS M2200 (All versions < V4.3.7), RUGGEDCOM ROS M969 (All versions < V4.3.7), RUGGEDCOM ROS RMC (All versions < V4.3.7), RUGGEDCOM ROS RMC20 (All versions < V4.3.7), RUGG...
Siemens Ruggedcom Ros I800
Siemens Ruggedcom Ros I801
Siemens Ruggedcom Ros I802
Siemens Ruggedcom Ros I803
Siemens Ruggedcom Ros M969
Siemens Ruggedcom Ros M2100
Siemens Ruggedcom Ros M2200
Siemens Ruggedcom Ros Rmc
Siemens Ruggedcom Ros Rmc20
Siemens Ruggedcom Ros Rmc30
Siemens Ruggedcom Ros Rmc40
Siemens Ruggedcom Ros Rmc41
Siemens Ruggedcom Ros Rmc8388
Siemens Ruggedcom Ros Rp110
Siemens Ruggedcom Ros Rs400
Siemens Ruggedcom Ros Rs401
Siemens Ruggedcom Ros Rs416
Siemens Ruggedcom Ros Rs416v2
Siemens Ruggedcom Ros Rs900
Siemens Ruggedcom Ros Rs900g
Siemens Ruggedcom Ros Rs900gp
Siemens Ruggedcom Ros Rs900l
9.8
CVSSv3
CVE-2021-29999
An issue exists in Wind River VxWorks up to and including 6.8. There is a possible stack overflow in dhcp server.
9.8
CVSSv3
CVE-2021-29998
An issue exists in Wind River VxWorks prior to 6.5. There is a possible heap overflow in dhcp client.
Windriver Vxworks
Siemens Ruggedcom Win Subscriber Station Firmware
Siemens Scalance X200-4 P Irt Firmware
Siemens Scalance X201-3p Irt Firmware
Siemens Scalance X201-3p Irt Pro Firmware
Siemens Scalance X202-2 Irt Firmware
Siemens Scalance X202-2p Irt Firmware
Siemens Scalance X202-2p Irt Pro Firmware
Siemens Scalance X204 Irt Firmware
Siemens Scalance X204 Irt Pro Firmware
Siemens Scalance X204-2 Firmware
Siemens Scalance X204-2fm Firmware
Siemens Scalance X204-2ld Firmware
Siemens Scalance X204-2ld Ts Firmware
Siemens Scalance X204-2ts Firmware
Siemens Scalance X206-1 Firmware
Siemens Scalance X206-1ld Firmware
Siemens Scalance X208 Firmware
Siemens Scalance X208 Pro Firmware
Siemens Scalance X212-2 Firmware
Siemens Scalance X212-2ld Firmware
Siemens Scalance X216 Firmware
9.8
CVSSv3
CVE-2019-17270
Yachtcontrol through 2019-10-06: It's possible to perform direct Operating System commands as an unauthenticated user via the "/pages/systemcall.php?command={COMMAND}" page and parameter, where {COMMAND} will be executed and returning the results to the client. Aff...
Yachtcontrol Yachtcontrol
9.8
CVSSv3
CVE-2011-2717
The DHCPv6 client (dhcp6c) as used in the dhcpv6 project through 2011-07-25 allows remote DHCP servers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message.
Linux Dhcp6c
Redhat Enterprise Linux 4.0
Redhat Enterprise Linux 5.0
9.8
CVSSv3
CVE-2011-1930
In klibc 1.5.20 and 1.5.21, the DHCP options written by ipconfig to /tmp/net-$DEVICE.conf are not properly escaped. This may allow a remote malicious user to send a specially crafted DHCP reply which could execute arbitrary code with the privileges of any process which sources DH...
Klibc Project Klibc
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 EDB exploit
9.8
CVSSv3
CVE-2019-0736
A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, aka 'Windows DHCP Client Remote Code Execution Vulnerability'.
Microsoft Windows 10 1703
Microsoft Windows 10 1709
Microsoft Windows 10 1803
Microsoft Windows 7 -
Microsoft Windows 10 1607
Microsoft Windows 8.1 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 -
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2016 1803
Microsoft Windows 10 -
Microsoft Windows Rt 8.1 -
2 Articles
9.8
CVSSv3
CVE-2019-1213
A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP server, aka 'Windows DHCP Server Remote Code Execution Vulnerability'.
Microsoft Windows Server 2008 -
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »