CVE-2020-13529 vulnerability in FreeDesktop and Other Products
Published on May 10, 2021

An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigure the server.

Vendor Advisory Vendor Advisory NVD

Weakness Type

Authentication Bypass by Spoofing

This attack-focused weakness is caused by improperly implemented authentication schemes that are subject to spoofing attacks.

Products Associated with CVE-2020-13529

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-13529 are published in these products:

FreeDesktop Systemd

Canonical Ubuntu Linux

NetApp Active Iq Unified Manager

Fedora Project Fedora

Systemdproject Systemd

NetApp Cloud Backup

Exploit Probability

EPSS

0.09%

Percentile

24.65%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-13529 vulnerability in FreeDesktop and Other ProductsPublished on May 10, 2021

Weakness Type

Authentication Bypass by Spoofing

Products Associated with CVE-2020-13529

Exploit Probability

CVE-2020-13529 vulnerability in FreeDesktop and Other Products
Published on May 10, 2021