CVE-2011-2176

Published Sep 2, 2011

Last updated 13 years ago

CVSS info 2.1

Overview

Description: GNOME NetworkManager before 0.8.6 does not properly enforce the auth_admin element in PolicyKit, which allows local users to bypass intended wireless network sharing restrictions via unspecified vectors.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-287

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1E52A487-28DE-4AC5-9E5E-136D089A9DD7",
            "versionEndIncluding": "0.8.4"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E2923027-F6FF-4E15-8890-039EEEACBCCF"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9007C9EF-299A-469A-AB8C-AC34F68ED66E"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBBA10C9-1289-4ED5-8220-D64756363D89"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9CA9051-FFFE-4A81-9DFB-5A88AFBCC9B6"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96BE22D8-3363-404F-BBA3-15ACEC476D42"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "684B1CD7-25AC-43B1-AF23-4F0DCF7ABF00"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F9C4E61-F66B-4190-8333-08282C97BF4D"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "059D401E-DAF3-4760-B6BF-243733C8169E"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4ACCB44D-9C94-44C0-9B66-B5F8B490FF91"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.6.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C39C259-1527-4E37-9EBB-C1302429A822"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2825F1D9-BE1F-42AA-A5C2-64099C371AB4"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "905E9021-3EF0-481E-966A-9343356D649E"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D65E039-D608-4565-8E37-F0D65AC2BEE0"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BAC0EE7F-953B-4CF7-8F9F-C5FDE518CEEC"
          },
          {
            "criteria": "cpe:2.3:a:gnome:networkmanager:0.8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "36B63323-1BC8-4644-9CFA-BC16F72B26C9"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References