CVE-2025-12200 | dnsmasq up to 2.73rc6 Config File src/option.c parse_dhcp_opt m null pointer dereference

A vulnerability, which was classified as problematic, has been found in dnsmasq up to 2.73rc6. Affected by this issue is the function parse_dhcp_opt of the file src/option.c of the component Config File Handler. This manipulation of the argument m causes null pointer dereference.

The identification of this vulnerability is CVE-2025-12200. The attack can only be executed locally. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-12200 | dnsmasq up to 2.73rc6 Config File src/option.c parse_dhcp_opt m null pointer dereference

Post correlati

CVE-2024-23562 | HCL Domino Server 11/12/14 Configuration improper authentication (KB0113822)

CVE-2023-32831 | MediaTek MT7986 WLAN Driver information disclosure (WCNCR00325055)

CVE-2024-6871 | G Data Total Security permission (ZDI-24-1486)

CVE-2025-34489 | GFI MailEssentials up to 21.7 .NET Remoting Service deserialization