Networkmanager · Libnm-Util · CVE-2011-1943
**Name of the Vulnerable Software and Affected Versions**
NetworkManager version 0.8.999-3.git20110526
**Description**
The issue allows local users to obtain sensitive information by reading a log file, due to a certificate password being logged by the `destroy one secret` function in `nm-setting-vpn.c` in the `libnm-util` component of the NetworkManager package.
**Recommendations**
For NetworkManager version 0.8.999-3.git20110526, consider restricting access to log files to minimize the risk of exploitation. As a temporary workaround, avoid using the `destroy one secret` function until a patch is available.