ConnMan DNS Proxy Denial-of-Service and Potential Arbitrary Code Execution Vulnerability

Vulnerability

A vulnerability in ConnMan versions through 1.44 allows for a denial-of-service condition and potentially arbitrary code execution. The issue arises in the DNS proxy component, specifically within the 'ns_resolv' lookup string. When the TC (Truncated) bit is set in a DNS response, the lookup string can be NULL or empty. This leads to incorrect length calculations and flawed memory copy operations, causing the application to crash and creating an opportunity for code execution.

Impact

Exploitation of this vulnerability can result in an application crash, causing a denial-of-service condition. Additionally, there is a possibility of arbitrary code execution due to the manipulation of memory operations.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

7.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

7.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ConnMan DNS Proxy Denial-of-Service and Potential Arbitrary Code Execution Vulnerability

Vulnerability

Impact

Affected Products

ConnMan

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating