5 matches found
CVE-2021-20297
Summary: CVE-2021-20297 affects NetworkManager prior to 1.30.0, where configuring a profile with match.path and activating it can crash the daemon, with impact on availability. Affected : NetworkManager (versions before 1.30.0). Root cause : match.path handling in profile activation leads to a cr...
CVE-2015-0272
CVE-2015-0272 affects GNOME NetworkManager and allows remote denial of service via a crafted MTU value in IPv6 Router Advertisement messages. Public advisories (IBM PowerKVM bulletin and CentOS/Ubuntu/Debian disclosures) show patches and updated NetworkManager packages to fix the issue; remediati...
CVE-2020-10754
CVE-2020-10754 affects NetworkManager via nmcli, where 802-1x.ca-path and 802-1x.phase2-ca-path are not honoured when creating a new profile. This can allow a user to connect to a network without proper authentication, resulting in an insecure connection. Public references in connected documents ...
CVE-2011-1943
CVE-2011-1943 affects NetworkManager 0.8.999-3.git20110526 in Fedora 15, where the destroy_one_secret function in nm-setting-vpn.c (libnm-util) logs a certificate password. The log entry can be read by local users, allowing disclosure of sensitive information. Impact is limited to confidentiality...
CVE-2005-2410
The CVE-2005-2410 entry concerns NetworkManager’s nm_info_handler, where a format string vulnerability arises from improper handling of a Wireless Access Point identifier in a syslog call. The impact described in the sources is remote code execution via crafted input, with attack vector over the ...