Insecure Authentication Controls

NetworkManager suffers from insecure authentication controls. The user configurations for 802-1x.ca-path and 802-1x.phase2-ca-path settings are not honored when creating a new profile, resulting in an insecure authentication...

Moderate: Red Hat Security Advisory: NetworkManager security and bug fix update

An update for NetworkManager is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

RHEL 8 : NetworkManager (RHSA-2020:3011)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3011 advisory. NetworkManager is a system network service that manages network devices and connections, attempting to keep active network connectivity when availabl...

Huawei EulerOS: Security Advisory for NetworkManager (EulerOS-SA-2020-1722)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.6.0 : NetworkManager (EulerOS-SA-2020-1722)

According to the version of the NetworkManager packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An information exposure vulnerability has been found in NetworkManager when dnsmasq is used in DNS processing mode. An...

Fedora: Security Advisory for NetworkManager (FEDORA-2020-ace543feff)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 31 : 1:NetworkManager (2020-ace543feff)

Update to 1.20.12 release - ifcfg-rh: handle '802-1x.,phase2-ca-path' rh 1841395, CVE-2020-10754 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

MGASA-2020-0260 Updated networkmanager packages fix security vulnerability

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the connection is made insecurely...

Updated networkmanager packages fix security vulnerability

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the connection is made insecurely...

[SECURITY] Fedora 31 Update: NetworkManager-1.20.12-1.fc31

NetworkManager is a system service that manages network interfaces and connections based on user or automatic configuration. It supports Ethernet, Bridge, Bond, VLAN, Team, InfiniBand, Wi-Fi, mobile broadband WWAN, PPPoE and other devices, and supports a variety of different VPN services...

CVE-2020-10754

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the connection is made insecurely...

CVE-2020-10754

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the connection is made insecurely...

Design/Logic Flaw

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the connection is made insecurely...

CVE-2020-10754

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the connection is made insecurely...

CVE-2020-10754

CVE-2020-10754 affects NetworkManager via nmcli, where 802-1x.ca-path and 802-1x.phase2-ca-path are not honoured when creating a new profile. This can allow a user to connect to a network without proper authentication, resulting in an insecure connection. Public references in connected documents ...

CVE-2020-10754

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the connection is made insecurely...

Fedora: Security Advisory for NetworkManager (FEDORA-2020-3857463d30)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 32 : 1:NetworkManager (2020-3857463d30)

Update to 1.22.14 release - ifcfg-rh: handle '802-1x.,phase2-ca-path' rhbz1841395, CVE-2020-10754 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

NetworkManager Access Control Error Vulnerability

NetworkManager is a network management daemon. A security vulnerability exists in NetworkManager that stems from the fact that nmcli command line interface does not enforce the 802-1x.ca-path and 802-1x.phase2-ca-path settings. No details of the vulnerability are available at this time...

[SECURITY] Fedora 32 Update: NetworkManager-1.22.14-1.fc32

NetworkManager is a system service that manages network interfaces and connections based on user or automatic configuration. It supports Ethernet, Bridge, Bond, VLAN, Team, InfiniBand, Wi-Fi, mobile broadband WWAN, PPPoE and other devices, and supports a variety of different VPN services...