An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigure the server.
NOTE: The following CVSS v3.0 metrics and score provided are preliminary and subject to review.
|Base Score:||6.1||Base Metrics:||AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H|
|Access Vector:||Adjacent network||Attack Complexity:||High|
|Privileges Required:||None||User Interaction:||None|
|Integrity Impact:||None||Availability Impact:||High|
|Oracle Linux version 8 (NetworkManager)||ELSA-2021-4361||2021-11-16|
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team