Every CVE whose affected-product data names Isc Kea, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2015-8373 — CVSS 6.8 (medium): The kea-dhcp4 and kea-dhcp6 servers 0.9.2 and 1.0.0-beta in ISC Kea, when certain debugging settings are used, allow remote attackers to…
CVE-2018-5739 — CVSS 6.5 (medium): An extension to hooks capabilities which debuted in Kea 1.4.0 introduced a memory leak for operators who are using certain hooks library…
CVE-2019-6472 — CVSS 6.5 (medium): A packet containing a malformed DUID can cause the Kea DHCPv6 server process (kea-dhcp6) to exit due to an assertion failure. Versions…
CVE-2019-6474 — CVSS 5.7 (medium): A missing check on incoming client requests can be exploited to cause a situation where the Kea server's lease storage contains leases…