CVE-2025-40779
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the kea-dhcp4 process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem.
This issue affects Kea versions 2.7.1 through 2.7.9, 3.0.0, and 3.1.0.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| ISC | Kea | 2.7.1 <= 2.7.9 | affected |
| ISC | Kea | 3.0.0 | affected |
| ISC | Kea | 3.1.0 | affected |
| ISC | Kea | 2.6.0 <= 2.6.4 | unaffected |
Weaknesses
- CWE-476: CWE-476 NULL Pointer Dereference
Workarounds
No workarounds known.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: partial
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.