CVE-2006-7246

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

NetworkManager 0.9.x does not pin a certificate's subject to an ESSID when 802.11X authentication is used.

References

http://www.openwall.com/lists/oss-security/2010/04/22/2

https://bugzilla.gnome.org/show_bug.cgi?id=341323

https://bugzilla.novell.com/show_bug.cgi?id=574266

https://lwn.net/Articles/468868/

Details

Source: MITRE

Published: 2020-01-27

Updated: 2020-01-31

Type: CWE-295

Risk Information

CVSS v2

Base Score: 3.2

Vector: AV:A/AC:H/Au:N/C:P/I:P/A:N

Impact Score: 4.9

Exploitability Score: 3.2

Severity: LOW

CVSS v3

Base Score: 6.8

Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Impact Score: 5.2

Exploitability Score: 1.6

Severity: MEDIUM

Tenable Plugins

View all (10 total)

IDNameProductFamilySeverity
90332Fedora 24 : NetworkManager-fortisslvpn-1.2.0-0.4.beta3.fc24 / etc (2016-cd218eef79)NessusFedora Local Security Checks
high
75977openSUSE Security Update : NetworkManager-gnome (openSUSE-SU-2012:0101-1)NessusSuSE Local Security Checks
medium
75976openSUSE Security Update : NetworkManager (openSUSE-SU-2011:1273-1)NessusSuSE Local Security Checks
low
75684openSUSE Security Update : NetworkManager-gnome (openSUSE-SU-2012:0101-1)NessusSuSE Local Security Checks
medium
75683openSUSE Security Update : NetworkManager (openSUSE-SU-2011:1273-1)NessusSuSE Local Security Checks
low
74520openSUSE Security Update : NetworkManager-gnome / NetworkManager / wpa_supplicant / etc (openSUSE-2011-15)NessusSuSE Local Security Checks
high
58032SuSE 10 Security Update : NetworkManager (ZYPP Patch Number 7957)NessusSuSE Local Security Checks
high
57972SuSE 11.1 Security Update : NetworkManager-gnome (SAT Patch Number 5621)NessusSuSE Local Security Checks
high
57086SuSE 11.1 Security Update : NetworkManager (SAT Patch Number 5381)NessusSuSE Local Security Checks
high
57085SuSE 11.1 Security Update : NetworkManager (SAT Patch Number 5381)NessusSuSE Local Security Checks
high