vulnerability

Oracle Linux: CVE-2020-10754: ELSA-2020-3011: NetworkManager security and bug fix update (MODERATE) (Multiple Advisories)

Try Surface Command
Back to search
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:P/I:N/A:N)
Published
May 29, 2020
Added
Jul 25, 2020
Modified
Dec 3, 2025

Description

It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the connection is made insecurely.
A flaw was found in nmcli, where the command-line interface to the NetworkManager did not accept the 802-1x.ca-path and 802-1x.phase2-ca-path settings when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and an insecure connection occurs.

Solutions

oracle-linux-upgrade-networkmanageroracle-linux-upgrade-networkmanager-adsloracle-linux-upgrade-networkmanager-bluetoothoracle-linux-upgrade-networkmanager-cloud-setuporacle-linux-upgrade-networkmanager-config-connectivity-redhatoracle-linux-upgrade-networkmanager-config-serveroracle-linux-upgrade-networkmanager-dispatcher-routing-rulesoracle-linux-upgrade-networkmanager-gliboracle-linux-upgrade-networkmanager-glib-develoracle-linux-upgrade-networkmanager-libnmoracle-linux-upgrade-networkmanager-libnm-develoracle-linux-upgrade-networkmanager-ovsoracle-linux-upgrade-networkmanager-ppporacle-linux-upgrade-networkmanager-teamoracle-linux-upgrade-networkmanager-tuioracle-linux-upgrade-networkmanager-wifioracle-linux-upgrade-networkmanager-wwan

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today