Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Kea crash upon interaction between specific client options and subnet selection
Vulnerability Description
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the `kea-dhcp4` process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem. This issue affects Kea versions 2.7.1 through 2.7.9, 3.0.0, and 3.1.0.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
空指针解引用
Vulnerability Title
ISC Kea 安全漏洞
Vulnerability Description
ISC Kea是ISC组织的一个现代开源 DHCPv4 和 DHCPv6 服务器。 ISC Kea 2.7.1至2.7.9版本和3.0.0、3.1.0版本存在安全漏洞,该漏洞源于DHCPv4客户端请求处理不当,可能导致进程中止。
CVSS Information
N/A
Vulnerability Type
N/A