CVE-2009-0578
Description
GNOME NetworkManager before 0.7.0.99 does not properly verify privileges for dbus (1) modify and (2) delete requests, which allows local users to change or remove the network connections of arbitrary users via unspecified vectors related to org.freedesktop.NetworkManagerUserSettings and at_console.
Risk Information
Base Score
7.1
MODERATE
Vector
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
EPSS Score
Exploitation Probability
0.048
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Libnl3-cli update (ELSA-2017-2299) libnl3-cli-3.2.28-4.el7.x86_64.rpm | Linux |
| Libnl3 update (ELSA-2017-2299) libnl3-3.2.28-4.el7.i686.rpm | Linux |
| NetworkManager-libreswan update (ELSA-2017-2299) NetworkManager-libreswan-1.2.4-2.el7.x86_64.rpm | Linux |
| NetworkManager-libreswan-gnome update (ELSA-2017-2299) NetworkManager-libreswan-gnome-1.2.4-2.el7.x86_64.rpm | Linux |
| Libnl3 update (ELSA-2017-2299) libnl3-3.2.28-4.el7.x86_64.rpm | Linux |
| Libnl3-cli update (ELSA-2017-2299) libnl3-cli-3.2.28-4.el7.i686.rpm | Linux |
| NetworkManager-config-connectivity-oracle update (ELSA-2025-20113) NetworkManager-config-connectivity-oracle-1.40.16-18.0.3.el8_10.noarch.rpm | Linux |
| NetworkManager-cloud-setup update (ELSA-2025-20113) NetworkManager-cloud-setup-1.40.16-18.0.3.el8_10.x86_64.rpm | Linux |
| NetworkManager-bluetooth update (ELSA-2025-20113) NetworkManager-bluetooth-1.40.16-18.0.3.el8_10.x86_64.rpm | Linux |
| NetworkManager-adsl update (ELSA-2025-20113) NetworkManager-adsl-1.40.16-18.0.3.el8_10.x86_64.rpm | Linux |
| NetworkManager update (ELSA-2025-20113) NetworkManager-1.40.16-18.0.3.el8_10.x86_64.rpm | Linux |
| NetworkManager-config-server update (ELSA-2025-20113) NetworkManager-config-server-1.40.16-18.0.3.el8_10.noarch.rpm | Linux |
| NetworkManager-dispatcher-routing-rules update (ELSA-2025-20113) NetworkManager-dispatcher-routing-rules-1.40.16-18.0.3.el8_10.noarch.rpm | Linux |
| NetworkManager-initscripts-updown update (ELSA-2025-20113) NetworkManager-initscripts-updown-1.40.16-18.0.3.el8_10.noarch.rpm | Linux |
| NetworkManager-libnm update (ELSA-2025-20113) NetworkManager-libnm-1.40.16-18.0.3.el8_10.x86_64.rpm | Linux |
| NetworkManager-ovs update (ELSA-2025-20113) NetworkManager-ovs-1.40.16-18.0.3.el8_10.x86_64.rpm | Linux |
| NetworkManager-ppp update (ELSA-2025-20113) NetworkManager-ppp-1.40.16-18.0.3.el8_10.x86_64.rpm | Linux |
| NetworkManager-team update (ELSA-2025-20113) NetworkManager-team-1.40.16-18.0.3.el8_10.x86_64.rpm | Linux |
| NetworkManager-tui update (ELSA-2025-20113) NetworkManager-tui-1.40.16-18.0.3.el8_10.x86_64.rpm | Linux |
| NetworkManager-wifi update (ELSA-2025-20113) NetworkManager-wifi-1.40.16-18.0.3.el8_10.x86_64.rpm | Linux |
| NetworkManager-wwan update (ELSA-2025-20113) NetworkManager-wwan-1.40.16-18.0.3.el8_10.x86_64.rpm | Linux |
| NetworkManager-libnm update (ELSA-2025-20113) NetworkManager-libnm-1.40.16-18.0.3.el8_10.i686.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234