Description

In ConnMan through 1.44, the lookup string in ns_resolv in dnsproxy.c can be NULL or an empty string when the TC (Truncated) bit is set in a DNS response. This allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code, because those lookup values lead to incorrect length calculations and incorrect memcpy operations.

INFO

Published Date :

2025-04-10T00:00:00.000Z

Last Modified :

2025-04-10T14:30:27.850Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-32743 vulnerability.

Vendors Products
Connman
  • Connman
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-32743.

URL Resource
https://lapis-sawfish-be3.notion.site/0-click-Vulnerability-in-Comman-1-43_v3-1cadc00d01d080b0b3b9c46a6da584cc cve-icon cve-icon
https://web.git.kernel.org/pub/scm/network/connman/connman.git/tree/src/dnsproxy.c?h=1.44#n1688 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact