Vulnerability in Zeroconf Multicast DNS Service Discovery Affects Python Implementation
CVE-2026-48487
5.3MEDIUM
What is CVE-2026-48487?
The Zeroconf library, a pure Python implementation of multicast DNS service discovery, is vulnerable to improper input validation. In versions prior to 0.149.16, the methods _read_character_string and _read_string in the source code allowed for the self.offset to be advanced based on an attacker-defined RDLENGTH, without adequate checks against the length of the data received. This flaw permits unauthenticated local links to send malicious TXT, HINFO, or A/AAAA records over UDP/5353, potentially allowing attackers to manipulate cached data with truncated records, thereby compromising the integrity of service discovery on affected systems. This vulnerability has been addressed in version 0.149.16.
Affected Version(s)
python-zeroconf < 0.149.16
