VDB
DEBIAN-CVE-2025-9615
DEBIAN-CVE-2025-9615
PUBLISHED
CVSS 3.299999952316284 LOW
A flaw was found in NetworkManager. The NetworkManager package allows access to files that may belong to other users. NetworkManager allows non-root users to configure the system's network. The daemon runs with root privileges and can access files owned by users different from the one who added the connection.
Risk Scores
CVSS 3.0
3.299999952316284
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:13 | network-manager | 1.56.0-6, 1.56.0-6, 1.54.0-1 |
| Debian:14 | network-manager | 1.52.1-1, 1.54.0-1, 1.54.0-2 |
| Debian:12 | network-manager | 1.42.4-1, 1.42.4-1, 1.42.6-1 |
| Debian:11 | network-manager | 1.54.2-1, 1.54.2-2, 1.54.2-3 |
Exploit Intelligence
- ghost_report_20260112_192608.json (github-poc)
- ghost_report_20260112_175243.json (github-poc)
- ghost_report_20260112_182220.json (github-poc)
- ghost_report_20260113_010235.json (github-poc)
- ghost_report_20260112_182638.json (github-poc)
Timeline
- Jan 26, 2026 CVE Published
- Apr 28, 2026 CVE Updated