CVE-2025-12199

dnsmasq Config File network.c check_servers null pointer dereference

Description

A vulnerability was found in dnsmasq up to 2.73rc6. Affected by this vulnerability is the function check_servers of the file src/network.c of the component Config File Handler. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

INFO

Published Date :

2025-10-27T01:02:09.029Z

Last Modified :

2025-10-28T01:21:01.416Z

Source :

VulDB

AFFECTED PRODUCTS

The following products are affected by CVE-2025-12199 vulnerability.

Vendors	Products
Dnsmasq	Dnsmasq

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-12199.

URL	Resource
https://nvd.nist.gov/vuln/detail/CVE-2025-12199
https://shimo.im/docs/ZzkLMVMN7vIYJBAQ/
https://vuldb.com/?ctiid.329869
https://vuldb.com/?id.329869
https://vuldb.com/?submit.673154
https://www.cve.org/CVERecord?id=CVE-2025-12199

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact

Detailed values of each vector for above chart.

Access Vector

Access Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact