VDB
GCVE-110-ISC-2026-3608
GCVE-110-ISC-2026-3608
Advisory Published
CVE: CVE-2026-3608
Title: Stack overflow in Kea daemons
Document version: 2.0
Posting date: 25 March 2026
Program impacted: Kea
Versions affected:
Kea
2.6.0 -> 2.6.4
3.0.0 -> 3.0.2
Severity: High
Exploitable: Remotely
Description:
Sending a maliciously crafted message to the kea-ctrl-agent, kea-dhcp-ddns, kea-dhcp4, or kea-dhcp6 daemons over any configured API socket or HA listener can cause the receiving daemon to exit with a stack overflow error.
Impact:
Loss of DHCP services
CVSS Score: 7.5 ...
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| ISC | Kea | — | — |
Aliases
References
Browse GCVE Records
73,196 records in the GCVE database · Updated July 17, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.