Unrated severityNVD Advisory· Published Apr 12, 2023· Updated Feb 8, 2025
CVE-2023-28488
CVE-2023-28488
Description
client.c in gdhcp in ConnMan through 1.41 could be used by network-adjacent attackers (operating a crafted DHCP server) to cause a stack-based buffer overflow and denial of service, terminating the connman process.
Affected products
6- ConnMan/ConnMandescription
- osv-coords5 versionspkg:rpm/opensuse/connman&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/connman&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/connman&distro=openSUSE%20Tumbleweedpkg:rpm/suse/connman&distro=SUSE%20Package%20Hub%2015%20SP4pkg:rpm/suse/connman&distro=SUSE%20Package%20Hub%2015%20SP5
< 1.42-bp154.2.6.1+ 4 more
- (no CPE)range: < 1.42-bp154.2.6.1
- (no CPE)range: < 1.42-bp155.4.3.1
- (no CPE)range: < 1.42-1.1
- (no CPE)range: < 1.42-bp154.2.6.1
- (no CPE)range: < 1.42-bp155.4.3.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4News mentions
0No linked articles in our index yet.