CVE-2022-46416

Name of the Vulnerable Software and Affected Versions Parrot Bebop version 4.7.1

Description The issue allows remote attackers to prevent legitimate terminal connections by exhausting the DHCP IP address pool. To exploit this, an attacker would first need to connect to the device's internal Wi-Fi network, for example, by guessing the password. Then, the attacker would send many DHCP request packets.

Recommendations For Parrot Bebop version 4.7.1, consider restricting access to the device's internal Wi-Fi network to prevent unauthorized connections, and limit the number of DHCP requests to mitigate the risk of IP address pool exhaustion. At the moment, there is no information about a newer version that contains a fix for this vulnerability.