CVE-2012-2320
EPSS 1.6%
Description
ConnMan before 0.85 does not ensure that netlink messages originate from the kernel, which allows remote attackers to bypass intended access restrictions and cause a denial of service via a crafted netlink message.
How to fix CVE-2012-2320
To remediate CVE-2012-2320, upgrade the affected package to a fixed version below.
- Debian/connman—upgrade to 1.0-1 or later
Is CVE-2012-2320 being exploited?
Low — EPSS is 1.6%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.0-1