Lucene search
K

6 matches found

OSV
OSV
added 2025/04/05 11:15 p.m.16 views

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

4.6AI score
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/05/26 12:0 a.m.6 views

The vulnerability of the dnsproxy package of the Connman connection manager allows a hacker to cause a service failure or expose protected information.

The vulnerability of the dnsproxy package of the Connman connection controller involves reading data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures or expose sensitive information...

9.4CVSS7.5AI score0.02598EPSS
Exploits1References13Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/12/28 12:0 a.m.5 views

The vulnerability of the dnsproxy package from the ConnectMan controller lies in the fact that memory writes beyond the buffer boundaries allow a hacker to execute arbitrary code.

The vulnerability of the dnsproxy package of the Connman connection manager is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.8CVSS8.3AI score0.02863EPSS
Exploits1References12Affected Software5
OSV
OSV
added 2021/06/09 6:15 p.m.8 views

CVE-2021-33833

ConnMan aka Connection Manager 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH for A or AAAA...

9.8CVSS9.7AI score
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/03/04 12:0 a.m.3 views

The vulnerability of the dnsproxy package from the ConnectMan controller allows a hacker to execute arbitrary code.

The vulnerability of the dnsproxy package of the Connman connection manager is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.8CVSS8.2AI score0.01301EPSS
Exploits0References17Affected Software6
OSV
OSV
added 2021/02/09 4:15 p.m.3 views

CVE-2021-26675

A stack-based buffer overflow in dnsproxy in ConnMan before 1.39 could be used by network adjacent attackers to execute code...

8.8CVSS8.9AI score
Exploits0References8
Rows per page
Query Builder