CVE-2020-10754

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the connection is made insecurely.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 48%
Affected Products (NVD)
VendorProductVersion
gnomenetworkmanager
𝑥
< 1.22.14
gnomenetworkmanager
1.24.0 ≤
𝑥
< 1.24.2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
network-manager
bookworm
1.42.4-1
fixed
bullseye
1.30.6-1+deb11u1
fixed
sid
1.50.0-1
fixed
trixie
1.50.0-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
network-manager
bionic
not-affected
eoan
not-affected
focal
not-affected
trusty
dne
xenial
not-affected
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
NetworkManager-devel
suse enterprise desktop 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise sap 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise server 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise workstation 15 SP4
1.32.12-150400.1.11
fixed
NetworkManager-lang
suse enterprise desktop 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise sap 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise server 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise workstation 15 SP4
1.32.12-150400.1.11
fixed
libnm0
suse enterprise desktop 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise desktop 15 SP5
1.38.6-150500.1.2
fixed
suse enterprise desktop 15 SP6
1.44.2-150600.1.7
fixed
suse enterprise desktop 15 SP7
1.44.2-150600.3.2.1
fixed
suse enterprise sap 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise sap 15 SP5
1.38.6-150500.1.2
fixed
suse enterprise sap 15 SP6
1.44.2-150600.1.7
fixed
suse enterprise sap 15 SP7
1.44.2-150600.3.2.1
fixed
suse enterprise server 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise server 15 SP5
1.38.6-150500.1.2
fixed
suse enterprise server 15 SP6
1.44.2-150600.1.7
fixed
suse enterprise server 15 SP7
1.44.2-150600.3.2.1
fixed
typelib-1_0-NM-1_0
suse enterprise desktop 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise desktop 15 SP5
1.38.6-150500.1.2
fixed
suse enterprise desktop 15 SP6
1.44.2-150600.1.7
fixed
suse enterprise desktop 15 SP7
1.44.2-150600.3.2.1
fixed
suse enterprise sap 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise sap 15 SP5
1.38.6-150500.1.2
fixed
suse enterprise sap 15 SP6
1.44.2-150600.1.7
fixed
suse enterprise sap 15 SP7
1.44.2-150600.3.2.1
fixed
suse enterprise server 15 SP4
1.32.12-150400.1.11
fixed
suse enterprise server 15 SP5
1.38.6-150500.1.2
fixed
suse enterprise server 15 SP6
1.44.2-150600.1.7
fixed
suse enterprise server 15 SP7
1.44.2-150600.3.2.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
NetworkManager
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-adsl
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-bluetooth
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-cloud-setup
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-config-connectivity-redhat
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-config-server
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-dispatcher-routing-rules
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-glib
RHEL 7
1:1.18.8-1.el7
fixed
NetworkManager-glib-devel
RHEL 7
1:1.18.8-1.el7
fixed
NetworkManager-libnm
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-libnm-devel
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-ovs
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-ppp
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-team
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-tui
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-wifi
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
NetworkManager-wwan
RHEL 7
1:1.18.8-1.el7
fixed
RHEL 8
1:1.22.8-5.el8_2
fixed
RHEL 8.2 AUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 E4S
1:1.22.8-5.el8_2
fixed
RHEL 8.2 EUS
1:1.22.8-5.el8_2
fixed
RHEL 8.2 TUS
1:1.22.8-5.el8_2
fixed
Common Weakness Enumeration
References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10754
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/44FTVXWKDYIAMOOP2PZMUY3D2QNWAVBZ/
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10754
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/44FTVXWKDYIAMOOP2PZMUY3D2QNWAVBZ/