What is the CVSS score of CVE-2025-9615?

CVE-2025-9615 has a CVSS 3.0 base score of 3.3 (Low). CVSS vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N. EPSS exploitation probability: 0.0%.

Which versions of NetworkManager. The NetworkManager are affected by CVE-2025-9615?

CVE-2025-9615 is a low-severity vulnerability in A flaw (CVSS 3.3). The limited severity suggests constrained impact, typically requiring specific conditions or local access for exploitation.

How to fix or mitigate CVE-2025-9615?

During next maintenance window: Apply vendor patches when convenient. Monitor vendor channels for updates.

NetworkManager. The NetworkManager CVE-2025-9615

LOW

Improper Preservation of Permissions (CWE-281)

2026-01-26 secalert@redhat.com

Information Disclosure

3.3

CVSS 3.0

CVSS VectorNVD

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 22:00 vuln.today

CVE Published

Jan 26, 2026 - 20:16 nvd

LOW 3.3

DescriptionNVD

A flaw was found in NetworkManager. The NetworkManager package allows access to files that may belong to other users. NetworkManager allows non-root users to configure the system's network. The daemon runs with root privileges and can access files owned by users different from the one who added the connection.

AnalysisAI

A flaw was found in NetworkManager. The NetworkManager package allows access to files that may belong to other users. [CVSS 3.3 LOW]

Technical ContextAI

Affected ProductsAI

NetworkManager

RemediationAI

Monitor vendor advisories for a patch.

CVE-2025-9615 vulnerability details – vuln.today

Back

NetworkManager. The NetworkManager CVE-2025-9615

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

Affected ProductsAI

RemediationAI

Share

External POC / Exploit Code