So it's not DHCP but dhclient. Anyway, for me it's another reason to disable DHCP and assign static IPs.
Critical Remote Code Execution Vulnerability in DHCP Client CVE-2019-0547, patched by Microsoft this year August 3, 2019 https://gbhackers.com/dhcp-client/ McAfee: DHCP Client Remote Code Execution Vulnerability Demystified