Описание
NetworkManager (NM) 0.7.2 does not ensure that the configured Certification Authority (CA) certificate file for a (1) WPA Enterprise or (2) 802.1x network remains present upon a connection attempt, which might allow remote attackers to obtain sensitive information or cause a denial of service (connectivity disruption) by spoofing the identity of a wireless network.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | |
| hardy | not-affected | |
| intrepid | not-affected | |
| jaunty | not-affected | |
| karmic | not-affected | |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 0.8~a~git.20091014t134532.4033e62-0ubuntu1 |
| hardy | not-affected | 0.6.6-0ubuntu3.1 |
| intrepid | released | 0.7~~svn20081020t000444-0ubuntu1.8.10.3 |
| jaunty | released | 0.7.1~rc4.1-0ubuntu2.1 |
| karmic | not-affected | 0.8~a~git.20091014t134532.4033e62-0ubuntu1 |
| upstream | needed |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
NetworkManager (NM) 0.7.2 does not ensure that the configured Certification Authority (CA) certificate file for a (1) WPA Enterprise or (2) 802.1x network remains present upon a connection attempt, which might allow remote attackers to obtain sensitive information or cause a denial of service (connectivity disruption) by spoofing the identity of a wireless network.
NetworkManager (NM) 0.7.2 does not ensure that the configured Certification Authority (CA) certificate file for a (1) WPA Enterprise or (2) 802.1x network remains present upon a connection attempt, which might allow remote attackers to obtain sensitive information or cause a denial of service (connectivity disruption) by spoofing the identity of a wireless network.
NetworkManager (NM) 0.7.2 does not ensure that the configured Certific ...
NetworkManager (NM) 0.7.2 does not ensure that the configured Certification Authority (CA) certificate file for a (1) WPA Enterprise or (2) 802.1x network remains present upon a connection attempt, which might allow remote attackers to obtain sensitive information or cause a denial of service (connectivity disruption) by spoofing the identity of a wireless network.
ELSA-2010-0108: NetworkManager security update (MODERATE)
EPSS
6.8 Medium
CVSS2