Published: 10/03/2020 Updated: 10/03/2020

CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 495

Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N

NetworkManager 0.9 and previous versions allows local users to use other users' certificates or private keys when making a connection via the file path when adding a new connection.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gnome networkmanager
debian debian linux 8.0
debian debian linux 9.0
debian debian linux 10.0

Debian Bug report logs - #684259 network-manager: CVE-2012-1096 Package: network-manager; Maintainer for network-manager is Utopia Maintenance Team <pkg-utopia-maintainers@listsaliothdebianorg>; Source for network-manager is src:network-manager (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@inutilorg> ...

source: wwwsecurityfocuscom/bid/52206/info GNOME NetworkManager is prone to a local arbitrary file-access vulnerability Local attackers can exploit this issue to read arbitrary files This may lead to further attacks NetworkManager 06, 07, and 09 are vulnerable; other versions may also be affected #!/usr/bin/python # # Copyright ...

CWE-295 https://security-tracker.debian.org/tracker/CVE-2012-1096 https://bugzilla.suse.com/show_bug.cgi?id=CVE-2012-1096 https://access.redhat.com/security/cve/cve-2012-1096 https://bugzilla.gnome.org/show_bug.cgi?id=793329 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1096 http://www.openwall.com/lists/oss-security/2012/03/02/3 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=684259 https://nvd.nist.gov https://www.exploit-db.com/exploits/36887/

CVE-2012-1096

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect