Systemd 245 Denial-of-Service Vulnerability: DHCP ACK Spoofing Attack

Systemd 245 Denial-of-Service Vulnerability: DHCP ACK Spoofing Attack

CVE-2020-13529 · MEDIUM Severity

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigure the server.

Learn more about our Cis Benchmark Audit For Server Software.