Stack Overflow Vulnerability in Kea DHCP Daemons by ISC
CVE-2026-3608

7.5HIGH

Key Information:

Vendor: Isc
Status: Kea
Vendor: CVE Published:; 25 March 2026

Badges

👾 Exploit Exists

What is CVE-2026-3608?

A vulnerability exists in ISC Kea DHCP that can be exploited by sending a specially crafted message to the kea-ctrl-agent, kea-dhcp-ddns, kea-dhcp4, or kea-dhcp6 daemons via any configured API socket or HA listener. This manipulation can lead to a stack overflow error causing the affected daemon to terminate unexpectedly. The issues impact Kea versions 2.6.0 to 2.6.4 and 3.0.0 to 3.0.2, potentially disrupting DHCP services and network management.

Affected Version(s)

Kea 2.6.0 <= 2.6.4

Kea 3.0.0 <= 3.0.2

References

https://kb.isc.org/docs/cve-2026-3608

vendor-advisory

https://downloads.isc.org/isc/kea/2.6.5

patch

https://downloads.isc.org/isc/kea/3.0.3

patch

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Mar 25, 2026
Vulnerability published
Mar 25, 2026
Vulnerability Reserved
Mar 5, 2026

Credit

ISC would like to thank Ali Norouzi of Keysight for bringing this vulnerability to our attention.

CVE-2026-3608 Data

JSON

Isc

Badges

What is CVE-2026-3608?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit