VIR Vulnerability Intelligence Relay

CVE-2012-2320

high
Published 2012-05-18 · Modified 2026-04-29
CVSS v3
CVSS v2
7.8
VIR risk
7.8

Description

ConnMan before 0.85 does not ensure that netlink messages originate from the kernel, which allows remote attackers to bypass intended access restrictions and cause a denial of service via a crafted netlink message.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2012-2320

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://secunia.com/advisories/49033

OS impact
OSVersionStatusFixed in
debian debianbookwormfixed1.0-1
debian debianbullseyefixed1.0-1
debian debianforkyfixed1.0-1
debian debiansidfixed1.0-1
debian debiantrixiefixed1.0-1

Application impact
VendorProductVersionsFixed
connmanconnman{"endIncluding":"0.84"}
connmanconnman0.1
connmanconnman0.2
connmanconnman0.3
connmanconnman0.4
connmanconnman0.5
connmanconnman0.6
connmanconnman0.7
connmanconnman0.8
connmanconnman0.9
connmanconnman0.10
connmanconnman0.11
connmanconnman0.12
connmanconnman0.13
connmanconnman0.14
connmanconnman0.15
connmanconnman0.16
connmanconnman0.17
connmanconnman0.18
connmanconnman0.19
connmanconnman0.20
connmanconnman0.21
connmanconnman0.22
connmanconnman0.23
connmanconnman0.24
connmanconnman0.25
connmanconnman0.26
connmanconnman0.27
connmanconnman0.28
connmanconnman0.29
connmanconnman0.30
connmanconnman0.31
connmanconnman0.32
connmanconnman0.33
connmanconnman0.34
connmanconnman0.35
connmanconnman0.36
connmanconnman0.37
connmanconnman0.38
connmanconnman0.39
connmanconnman0.40
connmanconnman0.41
connmanconnman0.42
connmanconnman0.43
connmanconnman0.44
connmanconnman0.45
connmanconnman0.46
connmanconnman0.47
connmanconnman0.48
connmanconnman0.49
connmanconnman0.50
connmanconnman0.51
connmanconnman0.52
connmanconnman0.53
connmanconnman0.54
connmanconnman0.55
connmanconnman0.56
connmanconnman0.57
connmanconnman0.58
connmanconnman0.59
connmanconnman0.60
connmanconnman0.61
connmanconnman0.62
connmanconnman0.63
connmanconnman0.64
connmanconnman0.65
connmanconnman0.66
connmanconnman0.67
connmanconnman0.68
connmanconnman0.69
connmanconnman0.70
connmanconnman0.71
connmanconnman0.72
connmanconnman0.73
connmanconnman0.74
connmanconnman0.75
connmanconnman0.76
connmanconnman0.77
connmanconnman0.78
connmanconnman0.79
connmanconnman0.80
connmanconnman0.81
connmanconnman0.82
connmanconnman0.83

References

CWEs

CWE-264

Verify integrity in audit chain (admin only). AS-IS.