Vulnerabilities > CVE-2025-1673 - Unspecified vulnerability in Zephyrproject Zephyr

CVSS 8.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

HIGH

network

low complexity

zephyrproject

NVD

Published: 2025-02-25

Updated: 2025-02-28

Summary

A malicious or malformed DNS packet without a payload can cause an out-of-bounds read, resulting in a crash (denial of service) or an incorrect computation.

Vulnerable Configurations

Part	Description	Count
OS	Zephyrproject Zephyrproject Zephyr *	1

References

https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-jjhx-rrh4-j8mx