Search CVE reports
1 – 10 of 30 results
A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager...
1 affected package
network-manager
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| network-manager | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An...
29 affected packages
connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt, kvpnc...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| connman | Ignored | Ignored | Ignored | Ignored |
| gadmin-openvpn-client | Not in release | Not in release | Ignored | Ignored |
| gadmin-openvpn-server | Not in release | Not in release | Ignored | Ignored |
| golang-github-apparentlymart-go-openvpn-mgmt | Ignored | Ignored | Ignored | — |
| kvpnc | Not in release | Not in release | Not in release | Ignored |
| libreswan | Ignored | Ignored | Ignored | Ignored |
| mozillavpn | Not in release | Ignored | Not in release | — |
| n2n | Ignored | Ignored | Ignored | Ignored |
| network-manager-fortisslvpn | Ignored | Ignored | Ignored | Ignored |
| network-manager-iodine | Ignored | Ignored | Ignored | Ignored |
| network-manager-l2tp | Ignored | Ignored | Ignored | Ignored |
| network-manager-openconnect | Ignored | Ignored | Ignored | Ignored |
| network-manager-openvpn | Ignored | Ignored | Ignored | Ignored |
| network-manager-pptp | Ignored | Ignored | Ignored | Ignored |
| network-manager-sstp | Ignored | Ignored | Not in release | — |
| network-manager-strongswan | Ignored | Ignored | Ignored | Ignored |
| network-manager-vpnc | Ignored | Ignored | Ignored | Ignored |
| openconnect | Ignored | Ignored | Ignored | Ignored |
| openfortivpn | Ignored | Ignored | Ignored | Ignored |
| openvpn | Ignored | Ignored | Ignored | Ignored |
| pptp-linux | Ignored | Ignored | Ignored | Ignored |
| pptpd | Not in release | Ignored | Ignored | Ignored |
| quicktun | Ignored | Ignored | Ignored | Ignored |
| riseup-vpn | Ignored | Not in release | Not in release | — |
| softether-vpn | Ignored | Ignored | Not in release | — |
| sshuttle | Ignored | Ignored | Ignored | Ignored |
| tinc | Ignored | Ignored | Ignored | Ignored |
| vpnc | Ignored | Ignored | Ignored | Ignored |
| wireguard | Ignored | Ignored | Ignored | Ignored |
An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel,...
31 affected packages
wireguard, connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| wireguard | Not affected | Not affected | Not affected | Not affected |
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| n2n | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| openvpn | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if...
31 affected packages
wireguard, n2n, connman, gadmin-openvpn-client, gadmin-openvpn-server...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| wireguard | Ignored | Ignored | Not affected | Ignored |
| n2n | Not affected | Not affected | Not affected | Not affected |
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
| openvpn | Not affected | Not affected | Not affected | Not affected |
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN...
31 affected packages
wireguard, tinc, connman, gadmin-openvpn-client, gadmin-openvpn-server...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| wireguard | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| n2n | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| openvpn | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
The WireGuard client 0.5.3 on Windows insecurely configures the operating system and firewall such that traffic to a local network that uses non-RFC1918 IP addresses is blocked. This allows an adversary to trick the victim into...
31 affected packages
wireguard, connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| wireguard | Ignored | Ignored | Ignored | Ignored |
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| n2n | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
| openvpn | Not affected | Not affected | Not affected | Not affected |
A flaw was found in NetworkManager in versions before 1.30.0. Setting match.path and activating a profile crashes NetworkManager. The highest threat from this vulnerability is to system availability.
1 affected package
network-manager
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| network-manager | — | — | Not affected | Not affected |
danfruehauf NetworkManager-ssh before 1.2.11 allows privilege escalation because extra options are mishandled.
1 affected package
network-manager-ssh
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| network-manager-ssh | Not affected | Not affected | Not affected | Vulnerable |
It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile,...
1 affected package
network-manager
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| network-manager | — | — | Not affected | Not affected |
A buffer overflow vulnerability in the dhcp6 client of systemd allows a malicious dhcp6 server to overwrite heap memory in systemd-networkd. Affected releases are systemd: versions up to and including 239.
2 affected packages
network-manager, systemd
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| network-manager | — | — | — | Fixed |
| systemd | — | — | — | Fixed |