Vulnerability Description
Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcp_release utility that allows attackers to cause a denial of service by supplying excessive input. Attackers can trigger a core dump and terminate the dhcp_release process by sending a crafted input string longer than 16 characters.
CVSS Score
MEDIUM
Related Weaknesses (CWE)
References
- https://launchpad.net/ubuntu/+source/dnsmasq/2.79-1
- https://www.exploit-db.com/exploits/48301
- https://www.vulncheck.com/advisories/dnsmasq-utils-dhcprelease-denial-of-service
FAQ
What is CVE-2020-37127?
CVE-2020-37127 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcp_release utility that allows attackers to cause a denial of service by supplying excessive input. Attackers can trigger a core ...
How severe is CVE-2020-37127?
CVE-2020-37127 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-37127?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.