CVE-2025-11232 | THREATINT

Description

To trigger the issue, three configuration parameters must have specific settings: "hostname-char-set" must be left at the default setting, which is "[^A-Za-z0-9.-]"; "hostname-char-replacement" must be empty (the default); and "ddns-qualifying-suffix" must *NOT* be empty (the default is empty). DDNS updates do not need to be enabled for this issue to manifest. A client that sends certain option content would then cause kea-dhcp4 to exit unexpectedly. This issue affects Kea versions 3.0.1 through 3.0.1 and 3.1.1 through 3.1.2.

PUBLISHED Reserved 2025-10-01 | Published 2025-10-29 | Updated 2025-10-29 | Assigner isc

HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Problem types

CWE-823 Use of Out-of-range Pointer Offset

Product status

Default status

unaffected

3.0.1 (custom)

affected

3.1.1 (custom)

affected

2.6.0 (custom)

unaffected

2.7.0 (custom)

unaffected

3.0.0 (custom)

unaffected

3.1.0 (custom)

unaffected

Credits

ISC would like to thank Siniša Uskoković and Ralf Steuer from Vienna University of Economics and Business for bringing this vulnerability to our attention.

References

kb.isc.org/docs/cve-2025-11232 (CVE-2025-11232) vendor-advisory

cve.org (CVE-2025-11232)

nvd.nist.gov (CVE-2025-11232)

Download JSON