CVE-2025-32743

Summary

In ConnMan through 1.44, the lookup string in ns_resolv in dnsproxy.c can be NULL or an empty string when the TC (Truncated) bit is set in a DNS response. This allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code, because those lookup values lead to incorrect length calculations and incorrect memcpy operations.

Affected Software

VendorProductVersion RangeStatus
ConnManConnMan0 <= 1.44affected

Weaknesses

  • CWE-392: CWE-392 Missing Report of Error Condition

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: total

References