Denial of Service Vulnerability in ISC Kea DHCP Servers
CVE-2015-8373

6.8MEDIUM

Key Information:

Vendor

Isc
Status
Kea
Vendor
CVE Published:
22 December 2015

What is CVE-2015-8373?

The ISC Kea DHCP servers (versions 0.9.2 and 1.0.0-beta) are susceptible to a denial of service vulnerability when certain debugging settings are enabled. Attackers can exploit this vulnerability by sending a malformed packet, which may lead to a crash of the DHCP daemon, causing service interruptions. It is crucial for system administrators to apply necessary patches and configurations to mitigate this risk.

References

https://kb.isc.org/article/AA-01318
x_refsource_CONFIRM
http://lists.fedoraproject.org/pipermail/package-announce...
vendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce...
vendor-advisoryx_refsource_FEDORA

CVSS V3.1

Score:
6.8
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.