VDB
CVE-2009-4144
CVE-2009-4144
PUBLISHED
CVSS 6.800000190734863 MEDIUM
NetworkManager (NM) 0.7.2 does not ensure that the configured Certification Authority (CA) certificate file for a (1) WPA Enterprise or (2) 802.1x network remains present upon a connection attempt, which might allow remote attackers to obtain sensitive information or cause a denial of service (connectivity disruption) by spoofing the identity of a wireless network.
EPSS 1.28% · 79.9th percentile
Risk Scores
CVSS 2.0
6.800000190734863
EPSS Score
1.28%
79.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| gnome | networkmanager | 0.7.2 |
Timeline
- Dec 23, 2009 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 37580 vdb
- [oss-security] 20091216 NetworkManager CVE assignment mailing-list
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560067 url
- SUSE-SR:2010:002 vendor-advisory
- RHSA-2010:0108 vendor-advisory
- oval:org.mitre.oval:def:11315 vdb
- 38420 third-party-advisory
- http://git.gnome.org/browse/network-manager-applet/commit/?h=NETWORKMANAGER_APPLET_0_7&id=4020594dfbf566f1852f0acb36ad631a9e73a82b url
- https://bugzilla.redhat.com/show_bug.cgi?id=546795 url
- https://nvd.nist.gov/vuln/detail/CVE-2009-4144 advisory