Out-of-Bounds Memory Access in Zephyr DNS Resolver
CVE-2026-10652

4.8MEDIUM

Key Information:

Vendor: Zephyrproject
Status: Zephyr
Vendor: CVE Published:; 30 June 2026

🔔 Create Zephyrproject Vulnerability Alert

What is CVE-2026-10652?

The DNS resolver in Zephyr RTOS has a vulnerability that affects how it parses resource records from DNS responses. The function dns_unpack_answer() improperly validates record data lengths, allowing attackers to craft malicious DNS responses that can exploit out-of-bounds memory access. This can lead to information leaks, as stale data from memory is returned as part of the responses, which may include sensitive information. Additionally, this vulnerability can potentially result in a Denial of Service by crossing allocation boundaries and causing the application to fault. The issue is mitigated by a patch that enforces stricter record size validation to prevent record declarations from exceeding the actual data size.

Affected Version(s)

zephyr 4.3.0 < 4.5.0

References

https://github.com/zephyrproject-rtos/zephyr/commit/58b46...

patch

https://github.com/zephyrproject-rtos/zephyr/security/adv...

CVSS V3.1

Score:

4.8

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 30, 2026
Vulnerability Reserved
Jun 2, 2026

CVE-2026-10652 Data

JSON