Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-25217

Опубликовано: 26 мая 2021
Источник: nvd
CVSS3: 7.4
CVSS2: 3.3
EPSS Низкий

Описание

In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches of ISC DHCP (i.e., releases in the 4.0.x series or lower and releases in the 4.3.x series) are beyond their End-of-Life (EOL) and no longer supported by ISC. From inspection it is clear that the defect is also present in releases from those series, but they have not been officially tested for the vulnerability), The outcome of encountering the defect while reading a lease that will trigger it varies, according to: the component being affected (i.e., dhclient or dhcpd) whether the package was built as a 32-bit or 64-bit binary whether the compiler flag -fstack-protection-strong was used when compiling In dhclient, ISC has not successfully reproduced the error on a 64-bit system. However, on a 32-bit system it is possible to cause dhclient to crash when reading an improper lease, which could cause network connectivity problems for an affected system due to the absence of a running DHCP client process. In dhcpd

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:isc:dhcp:*:*:*:*:*:*:*:*
Версия от 4.4.0 (включая) до 4.4.2 (включая)
cpe:2.3:a:isc:dhcp:4.1-esv:r1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r10:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r10_b1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r10_rc1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r10b1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r10rc1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r11:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r11_b1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r11_rc1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r11_rc2:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r11b1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r11rc1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r11rc2:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r12:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r12-p1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r12_b1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r12_p1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r12b1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r13:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r13_b1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r13b1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r14:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r14_b1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r14b1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r15:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r15-p1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r15_b1:*:*:*:*:*:*
cpe:2.3:a:isc:dhcp:4.1-esv:r16:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Конфигурация 4

Одновременно

cpe:2.3:o:siemens:ruggedcom_rox_rx1400_firmware:*:*:*:*:*:*:*:*
Версия до 2.15.0 (исключая)
cpe:2.3:h:siemens:ruggedcom_rox_rx1400:-:*:*:*:*:*:*:*
Конфигурация 5

Одновременно

cpe:2.3:o:siemens:ruggedcom_rox_rx1500_firmware:*:*:*:*:*:*:*:*
Версия от 2.3.0 (включая) до 2.15.0 (исключая)
cpe:2.3:h:siemens:ruggedcom_rox_rx1500:-:*:*:*:*:*:*:*
Конфигурация 6

Одновременно

cpe:2.3:o:siemens:ruggedcom_rox_rx1501_firmware:*:*:*:*:*:*:*:*
Версия от 2.3.0 (включая) до 2.15.0 (исключая)
cpe:2.3:h:siemens:ruggedcom_rox_rx1501:-:*:*:*:*:*:*:*
Конфигурация 7

Одновременно

cpe:2.3:o:siemens:ruggedcom_rox_rx1510_firmware:*:*:*:*:*:*:*:*
Версия от 2.3.0 (включая) до 2.15.0 (исключая)
cpe:2.3:h:siemens:ruggedcom_rox_rx1510:-:*:*:*:*:*:*:*
Конфигурация 8

Одновременно

cpe:2.3:o:siemens:ruggedcom_rox_rx1511_firmware:*:*:*:*:*:*:*:*
Версия от 2.3.0 (включая) до 2.15.0 (исключая)
cpe:2.3:h:siemens:ruggedcom_rox_rx1511:-:*:*:*:*:*:*:*
Конфигурация 9

Одновременно

cpe:2.3:o:siemens:ruggedcom_rox_rx1512_firmware:*:*:*:*:*:*:*:*
Версия от 2.3.0 (включая) до 2.15.0 (исключая)
cpe:2.3:h:siemens:ruggedcom_rox_rx1512:-:*:*:*:*:*:*:*
Конфигурация 10

Одновременно

cpe:2.3:o:siemens:ruggedcom_rox_rx1524_firmware:*:*:*:*:*:*:*:*
Версия до 2.15.0 (исключая)
cpe:2.3:h:siemens:ruggedcom_rox_rx1524:-:*:*:*:*:*:*:*
Конфигурация 11

Одновременно

cpe:2.3:o:siemens:ruggedcom_rox_rx1536_firmware:*:*:*:*:*:*:*:*
Версия до 2.15.0 (исключая)
cpe:2.3:h:siemens:ruggedcom_rox_rx1536:-:*:*:*:*:*:*:*
Конфигурация 12

Одновременно

cpe:2.3:o:siemens:ruggedcom_rox_rx5000_firmware:*:*:*:*:*:*:*:*
Версия от 2.3.0 (включая) до 2.15.0 (исключая)
cpe:2.3:h:siemens:ruggedcom_rox_rx5000:-:*:*:*:*:*:*:*
Конфигурация 13

Одновременно

cpe:2.3:o:siemens:ruggedcom_rox_mx5000_firmware:*:*:*:*:*:*:*:*
Версия от 2.3.0 (включая) до 2.15.0 (исключая)
cpe:2.3:h:siemens:ruggedcom_rox_mx5000:-:*:*:*:*:*:*:*
Конфигурация 14

Одно из

cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:*:*:*:*:*:*:*
Конфигурация 15

Одно из

cpe:2.3:a:siemens:sinec_ins:*:*:*:*:*:*:*:*
Версия до 1.0 (исключая)
cpe:2.3:a:siemens:sinec_ins:1.0:-:*:*:*:*:*:*
cpe:2.3:a:siemens:sinec_ins:1.0:sp1:*:*:*:*:*:*

EPSS

Процентиль: 48%
0.00244
Низкий

7.4 High

CVSS3

3.3 Low

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2021-25217

CVSS3: 7.4
ubuntu
около 4 лет назад

In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches of ISC DHCP (i.e., releases in the 4.0.x series or lower and releases in the 4.3.x series) are beyond their End-of-Life (EOL) and no longer supported by ISC. From inspection it is clear that the defect is also present in releases from those series, but they have not been officially tested for the vulnerability), The outcome of encountering the defect while reading a lease that will trigger it varies, according to: the component being affected (i.e., dhclient or dhcpd) whether the package was built as a 32-bit or 64-bit binary whether the compiler flag -fstack-protection-strong was used when compiling In dhclient, ISC has not successfully reproduced the error on a 64-bit system. However, on a 32-bit system it is possible to cause dhclient to crash when reading an improper lease, which could cause network connectivity problems for an affected system due to the absence of a running DHCP client process. In dh...

redhat логотип

CVE-2021-25217

CVSS3: 8.8
redhat
около 4 лет назад

In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches of ISC DHCP (i.e., releases in the 4.0.x series or lower and releases in the 4.3.x series) are beyond their End-of-Life (EOL) and no longer supported by ISC. From inspection it is clear that the defect is also present in releases from those series, but they have not been officially tested for the vulnerability), The outcome of encountering the defect while reading a lease that will trigger it varies, according to: the component being affected (i.e., dhclient or dhcpd) whether the package was built as a 32-bit or 64-bit binary whether the compiler flag -fstack-protection-strong was used when compiling In dhclient, ISC has not successfully reproduced the error on a 64-bit system. However, on a 32-bit system it is possible to cause dhclient to crash when reading an improper lease, which could cause network connectivity problems for an affected system due to the absence of a running DHCP client process. In dh...

msrc логотип

CVE-2021-25217

CVSS3: 7.4
msrc
около 4 лет назад

Описание отсутствует

debian логотип

CVE-2021-25217

CVSS3: 7.4
debian
около 4 лет назад

In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other ...

suse-cvrf логотип

openSUSE-SU-2021:1841-1

suse-cvrf
почти 4 года назад

Security update for dhcp

EPSS

Процентиль: 48%
0.00244
Низкий

7.4 High

CVSS3

3.3 Low

CVSS2

Дефекты

CWE-119