CVE-2022-4968

medium

Description

netplan leaks the private key of wireguard to local users. Versions after 1.0 are not affected.

References

https://www.cve.org/CVERecord?id=CVE-2022-4968

https://github.com/canonical/netplan/commit/4c39b75b5c6ae7d976bda6da68da60d9a7f085ee

https://bugs.launchpad.net/ubuntu/+source/netplan.io/+bug/2065738

https://bugs.launchpad.net/netplan/+bug/1987842

Details

Source: Mitre, NVD

Published: 2024-06-07

Updated: 2024-10-30

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 6.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Severity: Medium

EPSS

EPSS: 0.00057