CVE-2024-6501 โ€” Uncontrolled Resource Consumption in Project Network-manager

CWE-400 โ€” Uncontrolled Resource Consumption6 documents6 sources
Severity
3.1LOWNVD
EPSS
0.1%
top 75.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Network-manager Project Network-manager
Timeline
PublishedJul 9

Description

A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:LExploitability: 1.6 | Impact: 1.4

Affected Packages1 packages

โ–ถDebiannetwork-manager_project/network-manager< 1.42.4-1+deb12u1+2

๐Ÿ”ดVulnerability Details

3
GHSA
GHSA-gwgm-rhr4-mf4h: A flaw was found in NetworkManagerโ†—2024-07-09
โ–ถ
CVEList
Networkmanager: denial of serviceโ†—2024-07-09
โ–ถ
OSV
CVE-2024-6501: A flaw was found in NetworkManagerโ†—2024-07-09
โ–ถ

๐Ÿ“‹Vendor Advisories

2
Red Hat
NetworkManager: Denial of Serviceโ†—2024-07-04
โ–ถ
Debian
CVE-2024-6501: network-manager - A flaw was found in NetworkManager. When a system running NetworkManager with DE...โ†—2024
โ–ถ
CVE-2024-6501 โ€” Uncontrolled Resource Consumption | cvebase