PT-2025-43757 · Dnsmasq · Dnsmasq

Zh_Vul

Publicado

2025-10-27

Atualizado

2025-11-02

CVE-2025-12199

CVSS v3.1

4.4

Média

Vetor

AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions dnsmasq versions up to 2.73rc6

Description A flaw exists in dnsmasq that involves a null pointer dereference within the check servers function, located in the src/network.c file of the Config File Handler component. This issue can be triggered through local exploitation. The exploit for this issue has been publicly released, and attempts to notify the vendor were unsuccessful.

Recommendations Versions prior to 2.73rc6 should be used.

Exploit

Correção

NULL Pointer Dereference

Improper Resource Release

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476CWE-404

Identificadores relacionados

CVE-2025-12199

Produtos afetados

Dnsmasq

PT-2025-43757 · Dnsmasq · Dnsmasq

CVE-2025-12199

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 19