VDB
CVE-2022-32293
CVE-2022-32293
PUBLISHED
In ConnMan through 1.41, a man-in-the-middle attack against a WISPR HTTP query could be used to trigger a use-after-free in WISPR handling, leading to crashes or code execution.
EPSS 0.41% · 62.0th percentile
Risk Scores
EPSS Score
0.41%
62.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| intel | connman | 0 |
| n/a | n/a | n/a |
| debian | debian_linux | 11.0 |
Exploit Intelligence
Timeline
- Aug 2, 2022 CVE Published
- Aug 4, 2022 EPSS Score
- Aug 10, 2022 EPSS Score
- Nov 5, 2022 EPSS Score
- Dec 21, 2022 EPSS Score
- Feb 6, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 9, 2023 EPSS Score
- Jun 25, 2023 EPSS Score
- Aug 10, 2023 EPSS Score
- Sep 25, 2023 EPSS Score
- Dec 27, 2023 EPSS Score
References
- https://lore.kernel.org/connman/20220801080043.4861-3-wagi%40monom.org/ url
- https://bugzilla.suse.com/show_bug.cgi?id=1200190 url
- https://lore.kernel.org/connman/20220801080043.4861-1-wagi%40monom.org/ url
- DSA-5231 vendor-advisory
- GLSA-202310-21 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-32293 advisory
- https://lore.kernel.org/connman/20220801080043.4861-1-wagi%40monom.org url
- https://lore.kernel.org/connman/20220801080043.4861-1-wagi@monom.org url
- https://lore.kernel.org/connman/20220801080043.4861-3-wagi%40monom.org url
- https://lore.kernel.org/connman/20220801080043.4861-3-wagi@monom.org url