Published on April 28th, 2019 📆 | 4640 Views ⚑0
dhcpcd up to 7.2.0 auth.c Latency unknown vulnerability
|CVSS Meta Temp Score||Current Exploit Price (≈)|
A vulnerability classified as problematic has been found in dhcpcd up to 7.2.0. This affects an unknown function of the file auth.c. This is going to have an impact on confidentiality. The summary by CVE is:
auth.c in dhcpcd before 7.2.1 allowed attackers to infer secrets by performing latency attacks.
The weakness was released 04/28/2019. This vulnerability is uniquely identified as CVE-2019-11578 since 04/28/2019. Technical details are known, but no exploit is available. The price for an exploit might be around USD $0-$5k at the moment (estimation calculated on 04/28/2019).
Upgrading to version 7.2.1 eliminates this vulnerability.
VulDB Meta Base Score: 5.5
VulDB Meta Temp Score: 5.3
Status: Not defined
Price Prediction: ?
Current Price Estimation: ?
0-Day unlock unlock unlock unlock Today unlock unlock unlock unlock
Upgrade: dhcpcd 7.2.1
04/28/2019 Advisory disclosed Use the official API to access entries easily!
04/28/2019 +0 days VulDB entry created
04/28/2019 +0 days CVE assigned
04/28/2019 +0 days VulDB last updateCVE: CVE-2019-11578 (?)
See also: ?Created: 04/28/2019 09:30 PM
Use the official API to access entries easily!