cbcvebase.
CVE-2012-2321
published 2012-05-18

CVE-2012-2321: The loopback plug-in in ConnMan before 0.85 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) host name or (2) domain…

PriorityP260critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
5.71%
92.1th percentile
The loopback plug-in in ConnMan before 0.85 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) host name or (2) domain name in a DHCP reply.

Affected

89 ranges· showing 25
VendorProductVersion rangeFixed in
connmanconnman<= 0.84
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman
connmanconnman

Detection & IOCsextracted from sources · hover to see the quote

  • Monitor DHCP replies where the hostname or domain name fields contain shell metacharacters (e.g., ;, |, $(), backticks, &&, etc.), which are injected to achieve remote command execution via ConnMan's loopback plug-in.
  • ·Only ConnMan versions before 0.85 are vulnerable; the loopback plug-in passes unsanitized DHCP reply fields (hostname, domain name) to a shell, enabling command injection. Upgrade to 0.85+ or the Debian-fixed package (1.0-1) to remediate.

CVSS provenance

nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv10.0CRITICAL
vendor_debian10.0LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.