CVE-2026-6507 in dnsmasqinformation

Résumé

par MITRE • 17/04/2026

A flaw was found in dnsmasq. A remote attacker could exploit an out-of-bounds write vulnerability by sending a specially crafted BOOTREPLY (Bootstrap Protocol Reply) packet to a dnsmasq server configured with the `--dhcp-split-relay` option. This can lead to memory corruption, causing the dnsmasq daemon to crash and resulting in a denial of service (DoS).

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

Redhat

Réserver

17/04/2026

Divulgation

17/04/2026

Modérer

accepté

Entrée

VDB-358081

CPE

prêt

CWE

CWE-787 (confirmé)

CVSS

7.5 (CNA)

EPSS

0.00047

KEV

non

Activités

très faible

Secteur

Hostingprovider, Finance, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-6507
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-6507
CVE Details	https://www.cvedetails.com/cve/CVE-2026-6507/

◂ Précédent Aperçu Suivant ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!