CVE-2024-3661 HIGH

CVE-2024-3661: DHCP routing options can manipulate interface-based VPN traffic

Vendor Ietf
Product DHCP
Weakness CWE-306 · Missing auth
Published May 6, 2024
Last update August 28, 2024

CVSS base score

7.6/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity Low

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

What the vulnerability does

01Description

DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN.

Key dates

02Disclosure timeline

May 6, 2024 CVE published
August 28, 2024 Record updated