Vulnerability in Gnome Networkmanager

CVE-2012-1096

NetworkManager 0.9 and earlier allows local users to use other users' certificates or private keys when making a connection via the file path when adding a new connection.

EPSS: 0.004 (57.9th percentile) — read the EPSS interpretation.

Affected products

Gnome Networkmanager — versions 0.9 and earlier

References

security-tracker.debian.org/tracker/CVE-2012-1096 (x_refsource_MISC)
bugzilla.redhat.com/show_bug.cgi (x_refsource_MISC)
bugzilla.suse.com/show_bug.cgi (x_refsource_MISC)
access.redhat.com/security/cve/cve-2012-1096 (x_refsource_MISC)
www.openwall.com/lists/oss-security/2012/03/02/3 (x_refsource_MISC)
bugzilla.gnome.org/show_bug.cgi (x_refsource_MISC)