cbcvebase.
CVE-2011-1943
published 2011-06-14

CVE-2011-1943: The destroy_one_secret function in nm-setting-vpn.c in libnm-util in the NetworkManager package 0.8.999-3.git20110526 in Fedora 15 creates a log entry…

PriorityP44low2.1CVSS 2.0
AVLACLAuNCPINAN
EPSS
0.21%
11.8th percentile
The destroy_one_secret function in nm-setting-vpn.c in libnm-util in the NetworkManager package 0.8.999-3.git20110526 in Fedora 15 creates a log entry containing a certificate password, which allows local users to obtain sensitive information by reading a log file.

Affected

3 ranges
VendorProductVersion rangeFixed in
debiannetwork-manager-openvpn
fedoraprojectfedora
gnomenetworkmanager< 0.8.99970.8.9997

CVSS provenance

nvdv2.02.1LOWAV:L/AC:L/Au:N/C:P/I:N/A:N
vendor_debian2.1LOW
vendor_redhat2.1LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.