8 matches found
CVE-2024-31332
In multiple locations, there is a possible way to bypass a restriction on adding new Wi-Fi connections due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
DEBIAN-CVE-2023-42810
systeminformation is a System Information Library for Node.JS. Versions 5.0.0 through 5.21.6 have a SSID Command Injection Vulnerability. The problem was fixed with a parameter check in version 5.21.7. As a workaround, check or sanitize parameter strings that are passed to wifiConnections,...
systeminformation SSID Command Injection Vulnerability
Impact SSID Command Injection Vulnerability Patches Problem was fixed with a parameter check. Please upgrade to version = 5.21.7, Version 4 was not affected Workarounds If you cannot upgrade, be sure to check or sanitize parameter strings that are passed to wifiConnections, wifiNetworks string on...
CVE-2023-42810
systeminformation is a System Information Library for Node.JS. Versions 5.0.0 through 5.21.6 have a SSID Command Injection Vulnerability. The problem was fixed with a parameter check in version 5.21.7. As a workaround, check or sanitize parameter strings that are passed to wifiConnections,...
Google Android elevation of privilege vulnerability (CNVD-2022-26760)
Google Android is a Linux-based open source operating system from Google. Google Android suffers from a security vulnerability that stems from a lack of permission checking in the settings, which can be exploited by an attacker to add automatic connections to WiFi networks without the user's...
Oracle Linux 6 : NetworkManager (ELSA-2011-0930)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-0930 advisory. 0.8.1-9el61.1 - core: CVE-2011-2176: check for authorization when activating shared wifi connections rh 705806 Tenable has extracted the preceding description...
NetworkManager security update
0.8.1-9el61.1 - core: CVE-2011-2176: check for authorization when activating shared wifi connections rh 705806...
Fedora 15 : NetworkManager-0.8.9997-5.git20110702.fc15 (2011-9005)
This update ensures that users are authorized to start shared wifi connections, and includes fixes to retry failed connections after a period of time. It also ensures that 'always ask' 802.1x passwords like RSA Token codes are asked for again immediately if they fail, and adds the capability to...