Every CVE whose affected-product data names Gnome Networkmanager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2018-1000135 — CVSS 7.5 (high): GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure (CWE-200) vulnerability in DNS resolver that can result in…
CVE-2005-2410 — CVSS 7.5 (high): Format string vulnerability in the nm_info_handler function in Network Manager may allow remote attackers to execute arbitrary code via…
CVE-2006-7246 — CVSS 6.8 (medium): NetworkManager 0.9.x does not pin a certificate's subject to an ESSID when 802.11X authentication is used.
CVE-2009-4144 — CVSS 6.8 (medium): NetworkManager (NM) 0.7.2 does not ensure that the configured Certification Authority (CA) certificate file for a (1) WPA Enterprise or (2)…
CVE-2021-20297 — CVSS 5.5 (medium): A flaw was found in NetworkManager in versions before 1.30.0. Setting match.path and activating a profile crashes NetworkManager. The…
CVE-2012-1096 — CVSS 5.5 (medium): NetworkManager 0.9 and earlier allows local users to use other users' certificates or private keys when making a connection via the file…
CVE-2015-0272 — CVSS 5.0 (medium): GNOME NetworkManager allows remote attackers to cause a denial of service (IPv6 traffic disruption) via a crafted MTU value in an IPv6…
CVE-2012-2736 — CVSS 4.4 (medium): In NetworkManager 0.9.2.0, when a new wireless network was created with WPA/WPA2 security in AdHoc mode, it created an open/insecure…
CVE-2020-10754 — CVSS 4.3 (medium): It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when…
CVE-2009-4145 — CVSS 2.1 (low): nm-connection-editor in NetworkManager (NM) 0.7.x exports connection objects over D-Bus upon actions in the connection editor GUI, which…
CVE-2011-1943 — CVSS 2.1 (low): The destroy_one_secret function in nm-setting-vpn.c in libnm-util in the NetworkManager package 0.8.999-3.git20110526 in Fedora 15 creates…
CVE-2011-2176 — CVSS 2.1 (low): GNOME NetworkManager before 0.8.6 does not properly enforce the auth_admin element in PolicyKit, which allows local users to bypass…