CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

53 matches found

BDU FSTEC•added 2022/05/26 12:0 a.m.•3 views

The vulnerability of the dnsproxy package of the Connman connection manager allows a hacker to cause a service failure or expose protected information.

The vulnerability of the dnsproxy package of the Connman connection controller involves reading data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures or expose sensitive information...

9.4CVSS7.5AI score0.02598EPSS

Exploits1References13Affected Software5

BDU FSTEC•added 2022/05/26 12:0 a.m.•5 views

The vulnerability of the dnsproxy package from the ConnectMan controller allows a hacker to induce a service failure.

The vulnerability of the dnsproxy package of the Connman connection controller is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

7.8CVSS7.4AI score0.02485EPSS

Exploits1References13Affected Software5

BDU FSTEC•added 2022/05/26 12:0 a.m.•3 views

The vulnerability of the dnsproxy package from the ConnectMan controller allows a hacker to access confidential information or cause service failures.

The vulnerability of the dnsproxy package of the Connman connection manager is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to access confidential information or cause service failures...

9.4CVSS7.5AI score0.02372EPSS

Exploits1References14Affected Software5

BDU FSTEC•added 2021/12/28 12:0 a.m.•3 views

The vulnerability of the dnsproxy package from the ConnectMan controller lies in the fact that memory writes beyond the buffer boundaries allow a hacker to execute arbitrary code.

The vulnerability of the dnsproxy package of the Connman connection manager is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.8CVSS8.3AI score0.02863EPSS

Exploits1References12Affected Software5

Veracode•added 2021/06/16 7:48 a.m.•23 views

Buffer Overflow

ConnMan has buffer overflow. The vulnerability exists due to a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH for A or AAAA...

9.8CVSS4.7AI score0.02863EPSS

Exploits1References6Affected Software1

OSV•added 2021/06/09 6:15 p.m.•6 views

CVE-2021-33833

ConnMan aka Connection Manager 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH for A or AAAA...

9.8CVSS9.7AI score

Exploits0References5

OSV•added 2021/06/09 6:15 p.m.•2 views

DEBIAN-CVE-2021-33833

ConnMan aka Connection Manager 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH for A or AAAA...

9.8CVSS8.9AI score0.02863EPSS

Exploits1References1

CVE•added 2021/06/09 5:44 p.m.•91 views

CVE-2021-33833

ConnMan (Connection Manager) 1.30–1.39 contains a stack-based buffer overflow in dnsproxy.c uncompress when handling DNS NAME/RDATA/RDLENGTH for A/AAAA. This can allow a remote attacker to crash or execute code. Upstream fixes are available in version 1.40 (or later); affected users should upgrad...

9.8CVSS9.5AI score0.02863EPSS

Exploits1References5Affected Software1

Cvelist•added 2021/06/09 5:44 p.m.•20 views

CVE-2021-33833

ConnMan aka Connection Manager 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH for A or AAAA...

9.9AI score0.02863EPSS

Exploits1References5

Debian CVE•added 2021/06/09 5:44 p.m.•32 views

CVE-2021-33833

ConnMan aka Connection Manager 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH for A or AAAA...

9.8CVSS9.8AI score0.02863EPSS

Exploits1

UbuntuCve•added 2021/06/09 8:0 a.m.•26 views

CVE-2021-33833

ConnMan aka Connection Manager 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH for A or AAAA...

9.8CVSS7.3AI score0.02863EPSS

Exploits1References3

OSV•added 2021/06/09 8:0 a.m.•1 views

UBUNTU-CVE-2021-33833

ConnMan aka Connection Manager 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH for A or AAAA...

9.8CVSS6.2AI score0.02863EPSS

Exploits1References4

CNNVD•added 2021/06/09 12:0 a.m.•3 views

ConnMan 缓冲区错误漏洞

Arch Linux ConnMan 1.39 is an application from the Arch Linux community in the United States. It provides Intel's modular network connection manager. A buffer error vulnerability exists in ConnMan that stems from a stack-based buffer overflow when ConnMan is unpacked via NAME, RDATA, or RDLENGTH ...

9.8CVSS8.6AI score0.02863EPSS

Exploits1References11

BDU FSTEC•added 2021/03/04 12:0 a.m.•1 views

The vulnerability of the dnsproxy package from the ConnectMan controller allows a hacker to execute arbitrary code.

8.8CVSS8.2AI score0.01301EPSS

Exploits0References17Affected Software6

OSV•added 2021/02/09 4:15 p.m.•3 views

CVE-2021-26675

A stack-based buffer overflow in dnsproxy in ConnMan before 1.39 could be used by network adjacent attackers to execute code...

8.8CVSS8.9AI score

Exploits0References8

OSV•added 2021/02/09 4:15 p.m.•1 views