Home

CVE-2010-1172

Description

DBus-GLib 0.73 disregards the access flag of exported GObject properties, which allows local users to bypass intended access restrictions and possibly cause a denial of service by modifying properties, as demonstrated by properties of the (1) DeviceKit-Power, (2) NetworkManager, and (3) ModemManager services.

Risk Information

Base Score
10.0
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.066

Associated Vulnerability

VulnerabilityOS Platform
(RHSA-2010:0616) Moderate: dbus-glib security update NetworkManager-0.7.0-10.el5_5.1.i386.rpmLinux
(RHSA-2010:0616) Moderate: dbus-glib security update NetworkManager-0.7.0-10.el5_5.1.x86_64.rpmLinux
(RHSA-2010:0616) Moderate: dbus-glib security update NetworkManager-devel-0.7.0-10.el5_5.1.i386.rpmLinux
(RHSA-2010:0616) Moderate: dbus-glib security update NetworkManager-devel-0.7.0-10.el5_5.1.x86_64.rpmLinux
(RHSA-2010:0616) Moderate: dbus-glib security update NetworkManager-glib-0.7.0-10.el5_5.1.i386.rpmLinux
(RHSA-2010:0616) Moderate: dbus-glib security update NetworkManager-glib-0.7.0-10.el5_5.1.x86_64.rpmLinux
(RHSA-2010:0616) Moderate: dbus-glib security update NetworkManager-glib-devel-0.7.0-10.el5_5.1.i386.rpmLinux
(RHSA-2010:0616) Moderate: dbus-glib security update NetworkManager-glib-devel-0.7.0-10.el5_5.1.x86_64.rpmLinux
(RHSA-2010:0616) Moderate: dbus-glib security update NetworkManager-gnome-0.7.0-10.el5_5.1.i386.rpmLinux
(RHSA-2010:0616) Moderate: dbus-glib security update NetworkManager-gnome-0.7.0-10.el5_5.1.x86_64.rpmLinux
Libnl3-cli update (ELSA-2017-2299) libnl3-cli-3.2.28-4.el7.x86_64.rpmLinux
Libnl3 update (ELSA-2017-2299) libnl3-3.2.28-4.el7.i686.rpmLinux
NetworkManager-libreswan update (ELSA-2017-2299) NetworkManager-libreswan-1.2.4-2.el7.x86_64.rpmLinux
NetworkManager-libreswan-gnome update (ELSA-2017-2299) NetworkManager-libreswan-gnome-1.2.4-2.el7.x86_64.rpmLinux
Libnl3 update (ELSA-2017-2299) libnl3-3.2.28-4.el7.x86_64.rpmLinux
Libnl3-cli update (ELSA-2017-2299) libnl3-cli-3.2.28-4.el7.i686.rpmLinux
NetworkManager-config-connectivity-oracle update (ELSA-2025-20113) NetworkManager-config-connectivity-oracle-1.40.16-18.0.3.el8_10.noarch.rpmLinux
NetworkManager-cloud-setup update (ELSA-2025-20113) NetworkManager-cloud-setup-1.40.16-18.0.3.el8_10.x86_64.rpmLinux
NetworkManager-bluetooth update (ELSA-2025-20113) NetworkManager-bluetooth-1.40.16-18.0.3.el8_10.x86_64.rpmLinux
NetworkManager-adsl update (ELSA-2025-20113) NetworkManager-adsl-1.40.16-18.0.3.el8_10.x86_64.rpmLinux
NetworkManager update (ELSA-2025-20113) NetworkManager-1.40.16-18.0.3.el8_10.x86_64.rpmLinux
NetworkManager-config-server update (ELSA-2025-20113) NetworkManager-config-server-1.40.16-18.0.3.el8_10.noarch.rpmLinux
NetworkManager-dispatcher-routing-rules update (ELSA-2025-20113) NetworkManager-dispatcher-routing-rules-1.40.16-18.0.3.el8_10.noarch.rpmLinux
NetworkManager-initscripts-updown update (ELSA-2025-20113) NetworkManager-initscripts-updown-1.40.16-18.0.3.el8_10.noarch.rpmLinux
NetworkManager-libnm update (ELSA-2025-20113) NetworkManager-libnm-1.40.16-18.0.3.el8_10.x86_64.rpmLinux
NetworkManager-ovs update (ELSA-2025-20113) NetworkManager-ovs-1.40.16-18.0.3.el8_10.x86_64.rpmLinux
NetworkManager-ppp update (ELSA-2025-20113) NetworkManager-ppp-1.40.16-18.0.3.el8_10.x86_64.rpmLinux
NetworkManager-team update (ELSA-2025-20113) NetworkManager-team-1.40.16-18.0.3.el8_10.x86_64.rpmLinux
NetworkManager-tui update (ELSA-2025-20113) NetworkManager-tui-1.40.16-18.0.3.el8_10.x86_64.rpmLinux
NetworkManager-wifi update (ELSA-2025-20113) NetworkManager-wifi-1.40.16-18.0.3.el8_10.x86_64.rpmLinux
NetworkManager-wwan update (ELSA-2025-20113) NetworkManager-wwan-1.40.16-18.0.3.el8_10.x86_64.rpmLinux
NetworkManager-libnm update (ELSA-2025-20113) NetworkManager-libnm-1.40.16-18.0.3.el8_10.i686.rpmLinux
CVE-2010-1172NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234