Authentication Bypass by Spoofing

CVE-2020-13529

Medium

6.1/10

Summary

An exploitable denial-of-service vulnerability exists in Systemd through version 245. A specially crafted "DHCP FORCERENEW" packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of "FORCERENEW" and "DCHP ACK" packets to reconfigure the server.

Attack Complexity: HIGH
Attack Vector: ADJACENT_NETWORK
Integrity Impact: NONE
Scope: CHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: NONE
Availability Impact: HIGH

CWE-290 - Authentication Bypass by Spoofing

This attack-focused weakness is caused by improperly implemented authentication schemes that are subject to spoofing attacks.

References

Release Note
Advisory
Issue
Pull request

Advisory Timeline

Published May 10, 2021

Authentication Bypass by Spoofing

CVE-2020-13529

Summary

CWE-290 - Authentication Bypass by Spoofing

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS