CVE-2025-1673 | zephyrproject-rtos Zephyr up to 4.0 resolve.c dns_validate_msg out-of-bounds (GHSA-jjhx-rrh4-j8mx)

CVE-2025-1673 | zephyrproject-rtos Zephyr up to 4.0 resolve.c dns_validate_msg out-of-bounds (GHSA-jjhx-rrh4-j8mx)

A vulnerability was found in zephyrproject-rtos Zephyr up to 4.0. It has been declared as problematic. Affected by this vulnerability is the function dns_validate_msg of the file subsys/net/lib/dns/resolve.c. The manipulation leads to out-of-bounds read. This vulnerability is known as CVE-2025-1673. The attack can be launched remotely. Furthermore, there is an exploit available.