CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-9355 – Debian Security Advisory 4637-1
https://notcve.org/view.php?id=CVE-2020-9355
23 Feb 2020 — danfruehauf NetworkManager-ssh before 1.2.11 allows privilege escalation because extra options are mishandled. danfruehauf NetworkManager-ssh versiones anteriores a 1.2.11, permite una escalada de privilegios porque las opciones extra son manejadas inapropiadamente. Kobus van Schoor discovered that network-manager-ssh, a plugin to provide VPN integration for SSH in NetworkManager, is prone to a privilege escalation vulnerability. A local user with privileges to modify a connection can take advantage of this... • https://bugzilla.redhat.com/show_bug.cgi?id=1803499 •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2015-2924 – NetworkManager: denial of service (DoS) attack against IPv6 network stacks due to improper handling of Router Advertisements
https://notcve.org/view.php?id=CVE-2015-2924
25 Sep 2015 — The receive_ra function in rdisc/nm-lndp-rdisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in NetworkManager 1.x allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message, a similar issue to CVE-2015-2922. La función receive_ra en rdisc/nm-lndp-rdisc.c en la implementación del protocolo Neighbor Discovery (ND) en la pila IPv6 en NetworkManager 1.x permite a atacantes remotos reconfigurar un ajuste de límite de... • http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157803.html • CWE-20: Improper Input Validation CWE-358: Improperly Implemented Security Check for Standard •