Search

Find a vulnerability

Search criteria

    2 vulnerabilities by open_dhcp_server_project

    CVE-2020-26131 (GCVE-0-2020-26131)

    Vulnerability from nvd – Published: 2020-10-28 00:00 – Updated: 2024-08-04 15:49
    VLAI
    Summary
    Issues were discovered in Open DHCP Server (Regular) 1.75 and Open DHCP Server (LDAP Based) 0.1Beta. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenDHCPServer.exe (Regular) or the OpenDHCPLdap.exe (LDAP Based) binary.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T15:49:07.306Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sourceforge.net/projects/dhcpserver/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://github.com/an0ry/advisories"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://github.com/OffensiveOceloot/advisories/blob/main/CVE-2020-26131.md"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Issues were discovered in Open DHCP Server (Regular) 1.75 and Open DHCP Server (LDAP Based) 0.1Beta. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenDHCPServer.exe (Regular) or the OpenDHCPLdap.exe (LDAP Based) binary."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-27T00:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "url": "https://sourceforge.net/projects/dhcpserver/"
            },
            {
              "url": "https://github.com/an0ry/advisories"
            },
            {
              "url": "https://github.com/OffensiveOceloot/advisories/blob/main/CVE-2020-26131.md"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2020-26131",
        "datePublished": "2020-10-28T00:00:00.000Z",
        "dateReserved": "2020-09-28T00:00:00.000Z",
        "dateUpdated": "2024-08-04T15:49:07.306Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-26131 (GCVE-0-2020-26131)

    Vulnerability from cvelistv5 – Published: 2020-10-28 00:00 – Updated: 2024-08-04 15:49
    VLAI
    Summary
    Issues were discovered in Open DHCP Server (Regular) 1.75 and Open DHCP Server (LDAP Based) 0.1Beta. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenDHCPServer.exe (Regular) or the OpenDHCPLdap.exe (LDAP Based) binary.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T15:49:07.306Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sourceforge.net/projects/dhcpserver/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://github.com/an0ry/advisories"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://github.com/OffensiveOceloot/advisories/blob/main/CVE-2020-26131.md"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Issues were discovered in Open DHCP Server (Regular) 1.75 and Open DHCP Server (LDAP Based) 0.1Beta. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenDHCPServer.exe (Regular) or the OpenDHCPLdap.exe (LDAP Based) binary."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-02-27T00:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "url": "https://sourceforge.net/projects/dhcpserver/"
            },
            {
              "url": "https://github.com/an0ry/advisories"
            },
            {
              "url": "https://github.com/OffensiveOceloot/advisories/blob/main/CVE-2020-26131.md"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2020-26131",
        "datePublished": "2020-10-28T00:00:00.000Z",
        "dateReserved": "2020-09-28T00:00:00.000Z",
        "dateUpdated": "2024-08-04T15:49:07.306Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }