CVE-2022-32293

Description

In ConnMan through 1.41, a man-in-the-middle attack against a WISPR HTTP query could be used to trigger a use-after-free in WISPR handling, leading to crashes or code execution.

References

Mailing ListPatchThird Party Advisory
Mailing ListPatchThird Party Advisory
Issue TrackingThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics