Количество 9
Количество 9
CVE-2025-32801
Kea configuration and API directives can be used to load a malicious hook library. Many common configurations run Kea as root, leave the API entry points unsecured by default, and/or place the control sockets in insecure paths. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8.
CVE-2025-32801
Kea configuration and API directives can be used to load a malicious hook library. Many common configurations run Kea as root, leave the API entry points unsecured by default, and/or place the control sockets in insecure paths. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8.
CVE-2025-32801
Kea configuration and API directives can be used to load a malicious hook library. Many common configurations run Kea as root, leave the API entry points unsecured by default, and/or place the control sockets in insecure paths. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8.
CVE-2025-32801
Kea configuration and API directives can be used to load a malicious h ...
ROS-20250822-01
Уязвимость kea
GHSA-hv8v-455m-2grc
Kea configuration and API directives can be used to load a malicious hook library. Many common configurations run Kea as root, leave the API entry points unsecured by default, and/or place the control sockets in insecure paths. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8.
BDU:2025-11253
Уязвимость DHCP-сервера с открытым исходным кодом Kea, связанная с ненадежным путем поиска, позволяющая нарушителю повысить привилегии в системе
RLSA-2025:9178
Important: kea security update
ELSA-2025-9178
ELSA-2025-9178: kea security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-32801 Kea configuration and API directives can be used to load a malicious hook library. Many common configurations run Kea as root, leave the API entry points unsecured by default, and/or place the control sockets in insecure paths. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8. | CVSS3: 7.8 | 0% Низкий | 5 месяцев назад |
 | CVE-2025-32801 Kea configuration and API directives can be used to load a malicious hook library. Many common configurations run Kea as root, leave the API entry points unsecured by default, and/or place the control sockets in insecure paths. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8. | CVSS3: 7.8 | 0% Низкий | 5 месяцев назад |
 | CVE-2025-32801 Kea configuration and API directives can be used to load a malicious hook library. Many common configurations run Kea as root, leave the API entry points unsecured by default, and/or place the control sockets in insecure paths. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8. | CVSS3: 7.8 | 0% Низкий | 5 месяцев назад |
| CVE-2025-32801 Kea configuration and API directives can be used to load a malicious h ... | CVSS3: 7.8 | 0% Низкий | 5 месяцев назад |
 | ROS-20250822-01 Уязвимость kea | CVSS3: 7.8 | 0% Низкий | 2 месяца назад |
| GHSA-hv8v-455m-2grc Kea configuration and API directives can be used to load a malicious hook library. Many common configurations run Kea as root, leave the API entry points unsecured by default, and/or place the control sockets in insecure paths. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8. | CVSS3: 7.8 | 0% Низкий | 5 месяцев назад |
 | BDU:2025-11253 Уязвимость DHCP-сервера с открытым исходным кодом Kea, связанная с ненадежным путем поиска, позволяющая нарушителю повысить привилегии в системе | CVSS3: 7.8 | 0% Низкий | 7 месяцев назад |
 | RLSA-2025:9178 Important: kea security update | около 1 месяца назад | ||
| ELSA-2025-9178 ELSA-2025-9178: kea security update (IMPORTANT) | 4 месяца назад |
Уязвимостей на страницу