Skip to main content

Networkmanager

6 CVEs product

Monthly

CVE-2021-20297 MEDIUM PATCH This Month

A flaw was found in NetworkManager in versions before 1.30.0. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Networkmanager Openshift Container Platform Enterprise Linux Fedora
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2020-10754 MEDIUM PATCH This Month

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Networkmanager Fedora
NVD
CVSS 3.1
4.3
EPSS
1.0%
CVE-2018-1000135 HIGH This Week

GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure (CWE-200) vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubuntu Information Disclosure Networkmanager Ubuntu Linux
NVD
CVSS 3.0
7.5
EPSS
2.1%
CVE-2016-0764 MEDIUM This Month

Race condition in Network Manager before 1.0.12 as packaged in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Linux Server 7, and Red Hat Enterprise Linux. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Race Condition Red Hat Information Disclosure Networkmanager
NVD
CVSS 3.1
6.2
EPSS
0.0%
CVE-2015-0272 MEDIUM PATCH This Month

GNOME NetworkManager allows remote attackers to cause a denial of service (IPv6 traffic disruption) via a crafted MTU value in an IPv6 Router Advertisement (RA) message, a different vulnerability. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Networkmanager Linux Enterprise Debuginfo Linux Enterprise Desktop Linux Enterprise Real Time Extension +5
NVD
CVSS 2.0
5.0
EPSS
1.1%
CVE-2015-2924 LOW Monitor

The receive_ra function in rdisc/nm-lndp-rdisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in NetworkManager 1.x allows remote attackers to reconfigure a hop-limit. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Networkmanager
NVD
CVSS 2.0
3.3
EPSS
0.6%
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

A flaw was found in NetworkManager in versions before 1.30.0. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Networkmanager Openshift Container Platform +2
NVD
EPSS 1% CVSS 4.3
MEDIUM PATCH This Month

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Networkmanager Fedora
NVD
EPSS 2% CVSS 7.5
HIGH This Week

GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure (CWE-200) vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubuntu Information Disclosure Networkmanager +1
NVD
EPSS 0% CVSS 6.2
MEDIUM This Month

Race condition in Network Manager before 1.0.12 as packaged in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Linux Server 7, and Red Hat Enterprise Linux. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Race Condition Red Hat Information Disclosure +1
NVD
EPSS 1% CVSS 5.0
MEDIUM PATCH This Month

GNOME NetworkManager allows remote attackers to cause a denial of service (IPv6 traffic disruption) via a crafted MTU value in an IPv6 Router Advertisement (RA) message, a different vulnerability. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Networkmanager Linux Enterprise Debuginfo +7
NVD
EPSS 1% CVSS 3.3
LOW Monitor

The receive_ra function in rdisc/nm-lndp-rdisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in NetworkManager 1.x allows remote attackers to reconfigure a hop-limit. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Networkmanager
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy