CVE-2020-13529

ADVISORY - nist

Summary

An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigure the server.

EPSS Score⁠: 0.00055 (0.174)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-290⁠

Authentication Bypass by Spoofing

ADVISORY - redhat

CWE-306⁠

Missing Authentication for Critical Function

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.