Connman Security Vulnerabilities and Issues — Connman CVE List

Lucene search

IntelConnman

4 matches found

CVE•added 2022/01/28 4:15 p.m.•168 views

CVE-2022-23097

An issue was discovered in the DNS proxy in Connman through 1.40. forward_dns_reply mishandles a strnlen call, leading to an out-of-bounds read.

9.1CVSS8.8AI score0.00089EPSS

CVE•added 2022/01/28 4:15 p.m.•105 views

CVE-2022-23096

An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation lacks a check for the presence of sufficient Header Data, leading to an out-of-bounds read.

9.1CVSS8.9AI score0.00078EPSS

CVE•added 2022/08/03 2:15 p.m.•79 views

CVE-2022-32292

In ConnMan through 1.41, remote attackers able to send HTTP requests to the gweb component are able to exploit a heap-based buffer overflow in received_data to execute code.

9.8CVSS9.6AI score0.0097EPSS

CVE•added 2017/08/29 4:29 p.m.•77 views

CVE-2017-12865

Stack-based buffer overflow in "dnsproxy.c" in connman 1.34 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted response query string passed to the "name" variable.

9.8CVSS9.5AI score0.03761EPSS