PT-2020-7042 · Unknown+2 · Networkmanager+2

Ludwig Nussel

Published

2012-02-18

Updated

2024-06-15

CVE-2006-7246

CVSS v3.1

6.8

Medium

Vector

AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions NetworkManager versions 0.9.x

Description The issue concerns a problem where NetworkManager does not properly associate a certificate's subject with an ESSID when using 802.11X authentication. This could potentially lead to security issues, as the authentication process may not correctly verify the identity of the network being connected to.

Recommendations For NetworkManager versions 0.9.x, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Certificate Validation

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-295

Related Identifiers

ALT-PU-2014-1962

CVE-2006-7246

OPENSUSE-SU-2024:10152-1

SUSE-SU-2012_0283-1

Affected Products

Alt Linux

Networkmanager

Suse

PT-2020-7042 · Unknown+2 · Networkmanager+2

CVE-2006-7246

Weakness Enumeration

Related Identifiers

Affected Products

References · 13