The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2357 advisory.

  - In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches of ISC DHCP (i.e., releases     in the 4.0.x series or lower and releases in the 4.3.x series) are beyond their End-of-Life (EOL) and no     longer supported by ISC. From inspection it is clear that the defect is also present in releases from     those series, but they have not been officially tested for the vulnerability), The outcome of encountering     the defect while reading a lease that will trigger it varies, according to: the component being affected     (i.e., dhclient or dhcpd) whether the package was built as a 32-bit or 64-bit binary whether the compiler     flag -fstack-protection-strong was used when compiling In dhclient, ISC has not successfully reproduced     the error on a 64-bit system. However, on a 32-bit system it is possible to cause dhclient to crash when     reading an improper lease, which could cause network connectivity problems for an affected system due to     the absence of a running DHCP client process. In dhcpd, when run in DHCPv4 or DHCPv6 mode: if the dhcpd     server binary was built for a 32-bit architecture AND the -fstack-protection-strong flag was specified to     the compiler, dhcpd may exit while parsing a lease file containing an objectionable lease, resulting in     lack of service to clients. Additionally, the offending lease and the lease immediately following it in     the lease database may be improperly deleted. if the dhcpd server binary was built for a 64-bit     architecture OR if the -fstack-protection-strong compiler flag was NOT specified, the crash will not     occur, but it is possible for the offending lease and the lease which immediately followed it to be     improperly deleted. (CVE-2021-25217)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2414 advisory.

    The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows individual devices on an IP     network to get their own network configuration information, including an IP address, a subnet mask, and a     broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and     administer DHCP on a network.

    Security Fix(es):

    * dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or     lease files in dhcpd and dhclient (CVE-2021-25217)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2415 advisory.

    The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows individual devices on an IP     network to get their own network configuration information, including an IP address, a subnet mask, and a     broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and     administer DHCP on a network.

    Security Fix(es):

    * dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or     lease files in dhcpd and dhclient (CVE-2021-25217)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2418 advisory.

    The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows individual devices on an IP     network to get their own network configuration information, including an IP address, a subnet mask, and a     broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and     administer DHCP on a network.

    Security Fix(es):

    * dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or     lease files in dhcpd and dhclient (CVE-2021-25217)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-9314 advisory.

    [12:4.1.1-63.P1.0.2]
    - Added dhcp-4.1.1-P1-CVE-2021-25217.patch [Orabug: 33005948]

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

According to the version of the dhcp package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability :

  - In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0
    -> 4.4.2 (Other branches of ISC DHCP (i.e., releases in     the 4.0.x series or lower and releases in the 4.3.x     series) are beyond their End-of-Life (EOL) and no     longer supported by ISC. From inspection it is clear     that the defect is also present in releases from those     series, but they have not been officially tested for     the vulnerability), The outcome of encountering the     defect while reading a lease that will trigger it     varies, according to: th(CVE-2021-25217)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

According to the version of the dhcp packages installed, the EulerOS installation on the remote host is affected by the following vulnerability :

  - In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0
    -> 4.4.2 (Other branches of ISC DHCP (i.e., releases in     the 4.0.x series or lower and releases in the 4.3.x     series) are beyond their End-of-Life (EOL) and no     longer supported by ISC. From inspection it is clear     that the defect is also present in releases from those     series, but they have not been officially tested for     the vulnerability), The outcome of encountering the     defect while reading a lease that will trigger it     varies, according to: the component being affected     (i.e., dhclient or dhcpd) whether the package was built     as a 32-bit or 64-bit binary whether the compiler flag
    -fstack-protection-strong was used when compiling In     dhclient, ISC has not successfully reproduced the error     on a 64-bit system. However, on a 32-bit system it is     possible to cause dhclient to crash when reading an     improper lease, which could cause network connectivity     problems for an affected system due to the absence of a     running DHCP client process. In dhcpd, when run in     DHCPv4 or DHCPv6 mode: if the dhcpd server binary was     built for a 32-bit architecture AND the
    -fstack-protection-strong flag was specified to the     compiler, dhcpd may exit while parsing a lease file     containing an objectionable lease, resulting in lack of     service to clients. Additionally, the offending lease     and the lease immediately following it in the lease     database may be improperly deleted. if the dhcpd server     binary was built for a 64-bit architecture OR if the
    -fstack-protection-strong compiler flag was NOT     specified, the crash will not occur, but it is possible     for the offending lease and the lease which immediately     followed it to be improperly deleted.(CVE-2021-25217)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

According to the versions of the dhcp packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities :

  - In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches of ISC DHCP (i.e., releases     in the 4.0.x series or lower and releases in the 4.3.x series) are beyond their End-of-Life (EOL) and no     longer supported by ISC. From inspection it is clear that the defect is also present in releases from     those series, but they have not been officially tested for the vulnerability), The outcome of encountering     the defect while reading a lease that will trigger it varies, according to: the component being affected     (i.e., dhclient or dhcpd) whether the package was built as a 32-bit or 64-bit binary whether the compiler     flag -fstack-protection-strong was used when compiling In dhclient, ISC has not successfully reproduced     the error on a 64-bit system. However, on a 32-bit system it is possible to cause dhclient to crash when     reading an improper lease, which could cause network connectivity problems for an affected system due to     the absence of a running DHCP client process. In dhcpd, when run in DHCPv4 or DHCPv6 mode: if the dhcpd     server binary was built for a 32-bit architecture AND the -fstack-protection-strong flag was specified to     the compiler, dhcpd may exit while parsing a lease file containing an objectionable lease, resulting in     lack of service to clients. Additionally, the offending lease and the lease immediately following it in     the lease database may be improperly deleted. if the dhcpd server binary was built for a 64-bit     architecture OR if the -fstack-protection-strong compiler flag was NOT specified, the crash will not     occur, but it is possible for the offending lease and the lease which immediately followed it to be     improperly deleted. (CVE-2021-25217)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches of ISC DHCP (i.e., releases in the 4.0.x series or lower and releases in the 4.3.x series) are beyond their End-of-Life (EOL) and no longer supported by ISC. From inspection it is clear that the defect is also present in releases from those series, but they have not been officially tested for the vulnerability), The outcome of encountering the defect while reading a lease that will trigger it varies, according to: the component being affected (i.e., dhclient or dhcpd) whether the package was built as a 32-bit or 64-bit binary whether the compiler flag -fstack-protection-strong was used when compiling In dhclient, ISC has not successfully reproduced the error on a 64-bit system. However, on a 32-bit system it is possible to cause dhclient to crash when reading an improper lease, which could cause network connectivity problems for an affected system due to the absence of a running DHCP client process. In dhcpd, when run in DHCPv4 or DHCPv6 mode: if the dhcpd server binary was built for a 32-bit architecture AND the -fstack-protection-strong flag was specified to the compiler, dhcpd may exit while parsing a lease file containing an objectionable lease, resulting in lack of service to clients.
Additionally, the offending lease and the lease immediately following it in the lease database may be improperly deleted. if the dhcpd server binary was built for a 64-bit architecture OR if the -fstack- protection-strong compiler flag was NOT specified, the crash will not occur, but it is possible for the offending lease and the lease which immediately followed it to be improperly deleted.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

ID	Name	Product	Family	Published	Updated	Severity
150763	CentOS 7 : dhcp (RHSA-2021:2357)	Nessus	CentOS Local Security Checks	6/14/2021	10/9/2024	high
150776	RHEL 7 : dhcp (RHSA-2021:2414)	Nessus	Red Hat Local Security Checks	6/15/2021	11/7/2024	high
150781	RHEL 7 : dhcp (RHSA-2021:2415)	Nessus	Red Hat Local Security Checks	6/15/2021	11/7/2024	high
150814	RHEL 7 : dhcp (RHSA-2021:2418)	Nessus	Red Hat Local Security Checks	6/16/2021	11/7/2024	high
150843	Oracle Linux 6 : dhcp (ELSA-2021-9314)	Nessus	Oracle Linux Local Security Checks	6/17/2021	10/23/2024	high
151566	EulerOS Virtualization 2.9.0 : dhcp (EulerOS-SA-2021-2205)	Nessus	Huawei Local Security Checks	7/13/2021	12/8/2023	high
153048	EulerOS 2.0 SP5 : dhcp (EulerOS-SA-2021-2326)	Nessus	Huawei Local Security Checks	9/7/2021	12/1/2023	high
156490	EulerOS Virtualization 3.0.2.6 : dhcp (EulerOS-SA-2021-2860)	Nessus	Huawei Local Security Checks	1/6/2022	11/21/2023	high
157999	EulerOS Virtualization 3.0.6.6 : dhcp (EulerOS-SA-2022-1117)	Nessus	Huawei Local Security Checks	2/13/2022	11/9/2023	high
501623	Siemens DHCP Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2021-25217)	Tenable OT Security	Tenable.ot	9/14/2023	2/21/2024	high

Detections

Analytics

Plugins Search

high

high

high

high

high

high

high

high

high

high