CVE-2020-10754

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-10754

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-10754.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2020-10754

Related

Published

2020-06-08T18:15:10Z

Modified

2024-09-03T03:08:03.800342Z

Severity

4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the connection is made insecurely.

References

Affected packages

Debian:11 / network-manager

Package

Name: network-manager
Purl: pkg:deb/debian/network-manager?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.24.2-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / network-manager

Package

Name: network-manager
Purl: pkg:deb/debian/network-manager?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.24.2-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / network-manager

Package

Name: network-manager
Purl: pkg:deb/debian/network-manager?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.24.2-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Git / gitlab.freedesktop.org/NetworkManager/NetworkManager

Affected ranges

Type: GIT
Repo: https://gitlab.freedesktop.org/NetworkManager/NetworkManager
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

8e62305aa45a267ca44184640f32a8bff9f82df6

Affected versions

0.*

0.7.997

0.7.998

0.7.999

0.8

0.8-rc1

0.8-rc2

0.8-rc3

0.8.0.997

0.8.1-beta1

0.8.995

0.8.996

0.8.997

0.8.998

0.8.999

0.8.9997

0.9-rc2

0.9-rc3

0.9.0

0.9.0-beta1

0.9.0-beta2

0.9.0-beta3

0.9.0-rc1

0.9.1.90

0.9.1.95

0.9.10-beta1

0.9.2

0.9.2-beta1

0.9.2-rc1

0.9.2.0

0.9.3.990

0.9.3.995

0.9.3.997

0.9.4-beta1

0.9.4-rc1

0.9.4.0

0.9.5.95

0.9.5.96

0.9.6-rc1

0.9.6-rc2

0.9.6.0

0.9.7.995

0.9.8-beta1

0.9.9.1

0.9.9.95

1.*

1.1.0-dev

1.10-rc1

1.10.0

1.11.0-dev

1.11.1-dev

1.11.2-dev

1.11.3-dev

1.11.4-dev

1.12-rc1

1.12.0

1.13.0-dev

1.13.1-dev

1.13.2-dev

1.13.3-dev

1.14-rc1

1.14.0

1.15.0-dev

1.15.1-dev

1.15.2-dev

1.16-rc1

1.16-rc2

1.16.0

1.17.0-dev

1.17.1-dev

1.17.2-dev

1.17.3-dev

1.18-rc1

1.18.0

1.19.0-dev

1.19.1-dev

1.19.2-dev

1.19.3-dev

1.19.4-dev

1.19.5-dev

1.2-beta1

1.2-beta2

1.2-beta3

1.20-rc1

1.20.0

1.21.0-dev

1.21.1-dev

1.21.2-dev

1.21.3-dev

1.22-rc1

1.22.0

1.22.1-dev

1.22.10

1.22.11-dev

1.22.12

1.22.13-dev

1.22.2

1.22.3-dev

1.22.4

1.22.5-dev

1.22.6

1.22.7-dev

1.22.8

1.22.9-dev

1.3.0-dev

1.4-beta1

1.4-rc1

1.4.0

1.5.0-dev

1.5.1-dev

1.5.2-dev

1.5.3-dev

1.6-rc1

1.6-rc2

1.6.0

1.7.0-dev

1.7.1-dev

1.7.2-dev

1.8-rc1

1.8-rc2

1.8-rc3

1.8.0

1.9.0-dev

1.9.1-dev

1.9.2-dev

1.9.3-dev