Skip to main content

Dhcp

12 CVEs product

Monthly

CVE-2025-33050 HIGH PATCH This Week

Protection mechanism failure in Windows DHCP Server that enables network-based denial-of-service attacks without requiring authentication or user interaction. An attacker can remotely exploit this vulnerability to render DHCP services unavailable, disrupting network connectivity for affected systems. The high CVSS score of 7.5 and network attack vector indicate significant availability impact, though no confidentiality or integrity compromise occurs.

Microsoft Windows Dhcp Denial Of Service Windows Server 2025 +4
NVD
CVSS 3.1
7.5
EPSS
1.9%
CVE-2025-32725 HIGH PATCH This Week

Network-accessible denial-of-service vulnerability in Windows DHCP Server caused by a protection mechanism failure (CWE-693), allowing unauthenticated attackers to exhaust server availability without requiring authentication or user interaction. The vulnerability affects Windows DHCP Server implementations across multiple versions and has a CVSS severity of 7.5 (High). While the description does not explicitly reference KEV inclusion, active exploitation status, or EPSS data, the low attack complexity (AC:L) and network accessibility (AV:N) combined with no authentication requirements indicate this represents a credible denial-of-service threat to DHCP infrastructure.

Microsoft Windows Dhcp Denial Of Service Windows Server 2025 +4
NVD
CVSS 3.1
7.5
EPSS
1.9%
CVE-2022-2929 MEDIUM This Month

In ISC DHCP 1.0 -> 4.4.3, ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16-P1 a system with access to a DHCP server, sending DHCP packets crafted to include fqdn labels longer than 63 bytes, could eventually cause. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Dhcp Debian Linux Fedora
NVD
CVSS 3.1
6.5
EPSS
0.6%
CVE-2022-2928 MEDIUM This Month

In ISC DHCP 4.4.0 -> 4.4.3, ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16-P1, when the function option_code_hash_lookup() is called from add_option(), it increases the option's refcount field. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Dhcp Debian Linux Fedora
NVD
CVSS 3.1
6.5
EPSS
0.7%
CVE-2021-25217 HIGH POC PATCH This Week

In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches of ISC DHCP (i.e., releases in the 4.0.x series or lower and releases in the 4.3.x series) are beyond their End-of-Life. Rated high severity (CVSS 7.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Dhcp Fedora Debian Linux Ruggedcom Rox Rx1400 Firmware +12
NVD
CVSS 3.1
7.4
EPSS
6.1%
CVE-2016-2774 MEDIUM This Month

ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote attackers to cause a denial of service (INSIST. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Epss exploitation probability 65.6% and no vendor patch available.

Denial Of Service Dhcp Debian Linux Ubuntu Linux
NVD
CVSS 3.1
5.9
EPSS
65.6%
CVE-2015-8605 MEDIUM This Month

ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. Epss exploitation probability 43.4% and no vendor patch available.

Denial Of Service Unified Threat Management Up2Date Dhcp Debian Linux Ubuntu Linux
NVD
CVSS 3.0
6.5
EPSS
43.4%
CVE-2013-2494 MEDIUM This Month

libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to cause a denial of service (memory consumption) via vectors involving a regular expression, as demonstrated by a. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Denial Of Service Dhcp
NVD
CVSS 2.0
4.9
EPSS
1.0%
CVE-2012-3955 HIGH Act Now

ISC DHCP 4.1.x before 4.1-ESV-R7 and 4.2.x before 4.2.4-P2 allows remote attackers to cause a denial of service (daemon crash) in opportunistic circumstances by establishing an IPv6 lease in an. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. Epss exploitation probability 12.1% and no vendor patch available.

Denial Of Service Dhcp Debian Linux Ubuntu Linux
NVD
CVSS 2.0
7.1
EPSS
12.1%
CVE-2012-3954 LOW Monitor

Multiple memory leaks in ISC DHCP 4.1.x and 4.2.x before 4.2.4-P1 and 4.1-ESV before 4.1-ESV-R6 allow remote attackers to cause a denial of service (memory consumption) by sending many requests. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Dhcp Debian Linux Ubuntu Linux
NVD
CVSS 2.0
3.3
EPSS
5.9%
CVE-2012-3571 MEDIUM POC THREAT This Month

ISC DHCP 4.1.2 through 4.2.4 and 4.1-ESV before 4.1-ESV-R6 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed client identifier. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. Public exploit code available and EPSS exploitation probability 20.6%.

Buffer Overflow Denial Of Service Dhcp Ubuntu Linux Debian Linux
NVD Exploit-DB
CVSS 2.0
6.1
EPSS
20.6%
CVE-2012-3570 MEDIUM This Month

Buffer overflow in ISC DHCP 4.2.x before 4.2.4-P1, when DHCPv6 mode is enabled, allows remote attackers to cause a denial of service (segmentation fault and daemon exit) via a crafted client. Rated medium severity (CVSS 5.7). No vendor patch available.

Buffer Overflow Denial Of Service Dhcp
NVD
CVSS 2.0
5.7
EPSS
3.7%
EPSS 2% CVSS 7.5
HIGH PATCH This Week

Protection mechanism failure in Windows DHCP Server that enables network-based denial-of-service attacks without requiring authentication or user interaction. An attacker can remotely exploit this vulnerability to render DHCP services unavailable, disrupting network connectivity for affected systems. The high CVSS score of 7.5 and network attack vector indicate significant availability impact, though no confidentiality or integrity compromise occurs.

Microsoft Windows Dhcp +6
NVD
EPSS 2% CVSS 7.5
HIGH PATCH This Week

Network-accessible denial-of-service vulnerability in Windows DHCP Server caused by a protection mechanism failure (CWE-693), allowing unauthenticated attackers to exhaust server availability without requiring authentication or user interaction. The vulnerability affects Windows DHCP Server implementations across multiple versions and has a CVSS severity of 7.5 (High). While the description does not explicitly reference KEV inclusion, active exploitation status, or EPSS data, the low attack complexity (AC:L) and network accessibility (AV:N) combined with no authentication requirements indicate this represents a credible denial-of-service threat to DHCP infrastructure.

Microsoft Windows Dhcp +6
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

In ISC DHCP 1.0 -> 4.4.3, ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16-P1 a system with access to a DHCP server, sending DHCP packets crafted to include fqdn labels longer than 63 bytes, could eventually cause. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Dhcp Debian Linux +1
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

In ISC DHCP 4.4.0 -> 4.4.3, ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16-P1, when the function option_code_hash_lookup() is called from add_option(), it increases the option's refcount field. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Dhcp +2
NVD
EPSS 6% CVSS 7.4
HIGH POC PATCH This Week

In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches of ISC DHCP (i.e., releases in the 4.0.x series or lower and releases in the 4.3.x series) are beyond their End-of-Life. Rated high severity (CVSS 7.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Dhcp Fedora +14
NVD
EPSS 66% CVSS 5.9
MEDIUM This Month

ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote attackers to cause a denial of service (INSIST. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Epss exploitation probability 65.6% and no vendor patch available.

Denial Of Service Dhcp Debian Linux +1
NVD
EPSS 43% CVSS 6.5
MEDIUM This Month

ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. Epss exploitation probability 43.4% and no vendor patch available.

Denial Of Service Unified Threat Management Up2Date Dhcp +2
NVD
EPSS 1% CVSS 4.9
MEDIUM This Month

libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to cause a denial of service (memory consumption) via vectors involving a regular expression, as demonstrated by a. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Denial Of Service Dhcp
NVD
EPSS 12% CVSS 7.1
HIGH Act Now

ISC DHCP 4.1.x before 4.1-ESV-R7 and 4.2.x before 4.2.4-P2 allows remote attackers to cause a denial of service (daemon crash) in opportunistic circumstances by establishing an IPv6 lease in an. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. Epss exploitation probability 12.1% and no vendor patch available.

Denial Of Service Dhcp Debian Linux +1
NVD
EPSS 6% CVSS 3.3
LOW Monitor

Multiple memory leaks in ISC DHCP 4.1.x and 4.2.x before 4.2.4-P1 and 4.1-ESV before 4.1-ESV-R6 allow remote attackers to cause a denial of service (memory consumption) by sending many requests. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Dhcp Debian Linux +1
NVD
EPSS 21% CVSS 6.1
MEDIUM POC THREAT This Month

ISC DHCP 4.1.2 through 4.2.4 and 4.1-ESV before 4.1-ESV-R6 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed client identifier. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. Public exploit code available and EPSS exploitation probability 20.6%.

Buffer Overflow Denial Of Service Dhcp +2
NVD Exploit-DB
EPSS 4% CVSS 5.7
MEDIUM This Month

Buffer overflow in ISC DHCP 4.2.x before 4.2.4-P1, when DHCPv6 mode is enabled, allows remote attackers to cause a denial of service (segmentation fault and daemon exit) via a crafted client. Rated medium severity (CVSS 5.7). No vendor patch available.

Buffer Overflow Denial Of Service Dhcp
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy