Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/04/07 12:21 a.m.21 views

CVE-2025-32366

A flaw was found in ConnMan's DNS proxy component. This vulnerability allows an attacker to cause a buffer overread or memory corruption via a crafted DNS response due to improper validation of the RDLENGTH field before using it in a memcpy operation. Mitigation Mitigation for this issue is eithe...

3.7CVSS4.2AI score0.00376EPSS
Exploits0References5
Circl
Circl
added 2025/04/05 11:42 p.m.21 views

CVE-2025-32366

creationtimestamp| type| source ---|---|--- 2025-04-05 23:42:08+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10620 2025-04-06 01:07:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lm4aykahu22i 2025-04-06 03:27:01+00:00| seen|...

4.8CVSS4.5AI score0.00376EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/04/05 11:15 p.m.7 views

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

4.8CVSS5.8AI score0.00376EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/04/05 12:0 a.m.21 views

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

4.8CVSS4.9AI score0.00376EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/04/05 12:0 a.m.6 views

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

4.8CVSS4.7AI score0.00376EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/04/05 12:0 a.m.25 views

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

4.8CVSS0.00376EPSS
Exploits0References4
Rows per page
Query Builder