Lucene search
K

204 matches found

OSV
OSV
added 2 days ago3 views

OESA-2026-2825 NetworkManager security update

NetworkManager attempts to keep an active network connection available at all times. The point of NetworkManager is to make networking configuration and setup as painless and automatic as possible. If using DHCP, NetworkManager is intended to replace default routes, obtain IP addresses from a DHC...

6.7CVSS5.9AI score0.00118EPSS
Exploits0References2
OSV
OSV
added 2 days ago3 views

OESA-2026-2824 NetworkManager security update

NetworkManager attempts to keep an active network connection available at all times. The point of NetworkManager is to make networking configuration and setup as painless and automatic as possible. If using DHCP, NetworkManager is intended to replace default routes, obtain IP addresses from a DHC...

6.7CVSS5.9AI score0.00118EPSS
Exploits0References2
OSV
OSV
added 2 days ago3 views

OESA-2026-2823 NetworkManager security update

NetworkManager attempts to keep an active network connection available at all times. The point of NetworkManager is to make networking configuration and setup as painless and automatic as possible. If using DHCP, NetworkManager is intended to replace default routes, obtain IP addresses from a DHC...

6.7CVSS5.9AI score0.00118EPSS
Exploits0References2
OSV
OSV
added 2 days ago7 views

OESA-2026-2822 NetworkManager security update

NetworkManager attempts to keep an active network connection available at all times. The point of NetworkManager is to make networking configuration and setup as painless and automatic as possible. If using DHCP, NetworkManager is intended to replace default routes, obtain IP addresses from a DHC...

6.7CVSS5.9AI score0.00118EPSS
Exploits0References2
OSV
OSV
added 2026/06/29 9:32 a.m.2 views

SUSE-SU-2026:22446-1 Security update for dracut

This update for dracut fixes the following issue - CVE-2026-6893: Root code execution via DHCP options command injection bsc1268322. Changes for dracut: - Update to version 059+suse.643.g1f1d880: fixnetwork-legacy: sanitize DHCP values in dhclient-script.sh bsc1268322, CVE-2026-6893...

7.5CVSS6.4AI score0.01131EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/05 3:16 a.m.14 views

SUSE CVE-2026-10805

A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed Manufacturer Usage Description MUD URLs. A local user can exploit this flaw to escalate privileges by triggering a script via a crafted MUD URL,...

6.7CVSS5.7AI score0.00118EPSS
Exploits0References3
OSV
OSV
added 2026/06/04 6:16 a.m.7 views

DEBIAN-CVE-2026-10805

A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed Manufacturer Usage Description MUD URLs. A local user can exploit this flaw to escalate privileges by triggering a script via a crafted MUD URL,...

6.7CVSS5.4AI score0.00118EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 6:16 a.m.14 views

CVE-2026-10805

A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed Manufacturer Usage Description MUD URLs. A local user can exploit this flaw to escalate privileges by triggering a script via a crafted MUD URL,...

6.7CVSS0.00118EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 6:16 a.m.10 views

UBUNTU-CVE-2026-10805

A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed Manufacturer Usage Description MUD URLs. A local user can exploit this flaw to escalate privileges by triggering a script via a crafted MUD URL,...

6.7CVSS5.4AI score0.00118EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/06/04 5:21 a.m.9 views

CVE-2026-10805 Networkmanager: networkmanager: local privilege escalation via malformed mud urls in dhclient backend

A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed Manufacturer Usage Description MUD URLs. A local user can exploit this flaw to escalate privileges by triggering a script via a crafted MUD URL,...

6.7CVSS5.7AI score0.00118EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/04 5:21 a.m.13 views

EUVD-2026-34207

A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed Manufacturer Usage Description MUD URLs. A local user can exploit this flaw to escalate privileges by triggering a script via a crafted MUD URL,...

6.7CVSS5.7AI score0.00118EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/04 5:21 a.m.41 views

CVE-2026-10805 Networkmanager: networkmanager: local privilege escalation via malformed mud urls in dhclient backend

A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed Manufacturer Usage Description MUD URLs. A local user can exploit this flaw to escalate privileges by triggering a script via a crafted MUD URL,...

6.7CVSS0.00118EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/04 5:21 a.m.9 views

CVE-2026-10805

A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed Manufacturer Usage Description MUD URLs. A local user can exploit this flaw to escalate privileges by triggering a script via a crafted MUD URL,...

6.7CVSS5.7AI score0.00118EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/04 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-10805

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed...

6.7CVSS5.5AI score0.00118EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.15 views

PT-2026-46143

A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed Manufacturer Usage Description MUD URLs. A local user can exploit this flaw to escalate privileges by triggering a script via a crafted MUD URL,...

6.7CVSS5.7AI score0.00118EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.8 views

NetworkManager 操作系统命令注入漏洞

NetworkManager is an open-source network management daemon developed by NetworkManager. NetworkManager has a vulnerability related to operating system command injection. This vulnerability stems from the dhclient backend’s handling of format-errors in Manufacturer Usage Description URLs, leading ...

6.7CVSS5.6AI score0.00118EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/01 8:47 a.m.8 views

CVE-2026-42511

The BOOTP file field is written to the lease file without escaping embedded double-quotes, allowing injection of arbitrary dhclient.conf directives. When the lease file is subsequently re-parsed by dhclient, e.g., after a system restart, an attacker-controlled field from the lease is passed to...

8.1CVSS6.1AI score0.00431EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/01 8:47 a.m.6 views

CVE-2026-42512

As dhclient is building an environment to pass to dhclient-script, it may need to resize the array of string pointers. The code which expands the array incorrectly calculates its new size when requesting memory, resulting in a heap buffer overrun. A specially crafted packet can cause dhclient to...

8.1CVSS6.2AI score0.01423EPSS
Exploits0References1
NVD
NVD
added 2026/04/30 9:16 a.m.6 views

CVE-2026-42512

As dhclient is building an environment to pass to dhclient-script, it may need to resize the array of string pointers. The code which expands the array incorrectly calculates its new size when requesting memory, resulting in a heap buffer overrun. A specially crafted packet can cause dhclient to...

8.1CVSS0.01423EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/30 7:58 a.m.10 views

EUVD-2026-26357

As dhclient is building an environment to pass to dhclient-script, it may need to resize the array of string pointers. The code which expands the array incorrectly calculates its new size when requesting memory, resulting in a heap buffer overrun. A specially crafted packet can cause dhclient to...

7.3CVSS6AI score0.01423EPSS
Exploits0References1
Rows per page
Query Builder