CVE-2025-70102
Deferred Deferred - Pending Action

NULL Pointer Dereference in dhcpcd Configuration Parser

Vulnerability report for CVE-2025-70102, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-06-15

Last updated on: 2026-06-16

Assigner: MITRE

Description

A NULL pointer dereference occurs in Roy Marples NetworkConfiguration/dhcpcd 10.3.0 while parsing configuration options. In parse_option() (src/if-options.c:1886), the code performs a member access on a NULL pointer of type 'struct dhcp_opt' when an unexpected/invalid option token or parsing state causes the lookup to yield NULL. The instrumented fuzzing build reports 'runtime error: member access within null pointer of type struct dhcp_opt' and aborts.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-06-15
Last Modified
2026-06-16
Generated
2026-07-06
AI Q&A
2026-06-15
EPSS Evaluated
2026-07-04
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
roy_marples dhcpcd 10.3.0

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-476 The product dereferences a pointer that it expects to be valid but is NULL.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a NULL pointer dereference in Roy Marples NetworkConfiguration/dhcpcd version 10.3.0. It occurs while parsing configuration options in the function parse_option() located in src/if-options.c at line 1886. The code attempts to access a member of a NULL pointer of type 'struct dhcp_opt' when an unexpected or invalid option token or parsing state causes the lookup to return NULL. This results in a runtime error and causes the program to abort.

Impact Analysis

The impact of this vulnerability is that it can cause the dhcpcd program to crash due to a NULL pointer dereference when parsing configuration options. This could lead to denial of service or disruption of network configuration services on affected systems.

Detection Guidance

This vulnerability involves a NULL pointer dereference in dhcpcd 10.3.0 when parsing configuration options, which can cause the program to abort during runtime error detection in fuzzing builds.

Detection on your system could involve monitoring for crashes or aborts of the dhcpcd process, especially those related to parsing configuration options.

Since the vulnerability triggers a runtime error during fuzzing, enabling debug or instrumented builds of dhcpcd and observing logs for 'runtime error: member access within null pointer of type struct dhcp_opt' could help detect it.

No specific commands or network detection methods are provided in the available resources.

Mitigation Strategies

The provided information does not include explicit mitigation steps or patches for this vulnerability.

General best practices would include updating dhcpcd to a version where this issue is fixed once available, or applying any vendor-provided patches.

In the meantime, monitoring dhcpcd for crashes and avoiding use of untrusted or malformed configuration options may reduce risk.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-70102. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart