Published: 16/10/2019 Updated: 21/10/2019

CVSS v2 Base Score: 3.3 | Impact Score: 2.9 | Exploitability Score: 6.5

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 294

Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P

An invalid hostname option can trigger an assertion failure in the Kea DHCPv4 server process (kea-dhcp4), causing the server process to exit. Versions affected: 1.4.0 to 1.5.0, 1.6.0-beta1, and 1.6.0-beta2.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ics kea
ics kea 1.6.0

Debian Bug report logs - #936040 isc-kea: CVE-2019-6472 CVE-2019-6473 CVE-2019-6474 Package: src:isc-kea; Maintainer for src:isc-kea is Kea <isc-kea@packagesdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 29 Aug 2019 11:09:02 UTC Severity: grave Tags: security, upstream Found in versio ...

the Kea DHCPv4 server, which can exit with an assertion failure if it receives a packed containing a malformed option ...

CWE-617 https://kb.isc.org/docs/cve-2019-6473 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=936040 https://nvd.nist.gov https://security.archlinux.org/CVE-2019-6473

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-6473

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect