CVE-2020-9355
Description
danfruehauf NetworkManager-ssh before 1.2.11 allows privilege escalation because extra options are mishandled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
NetworkManager-ssh before 1.2.11 mishandles extra options, enabling privilege escalation for local attackers.
Vulnerability
The NetworkManager-ssh plugin before version 1.2.11 mishandles extra options passed to SSH connections, allowing unintended modification of SSH commands. The issue was addressed by removing the processing of extra options [1][2].
Exploitation
A local attacker with the ability to configure or influence the SSH connection options in NetworkManager can inject arbitrary extra options, potentially altering the behavior of the SSH command. This requires local access and the ability to modify connection settings.
Impact
Successful exploitation leads to privilege escalation, as the attacker can execute commands with elevated privileges or gain unauthorized access beyond their intended permissions.
Mitigation
Upgrade to NetworkManager-ssh version 1.2.11 or later, which removes the vulnerable extra options handling [1][2]. No workarounds are provided.
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- NetworkManager-ssh/NetworkManager-sshdescription
- Range: <1.2.11
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.debian.org/security/2020/dsa-4637mitrevendor-advisoryx_refsource_DEBIAN
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
- github.com/danfruehauf/NetworkManager-ssh/pull/98mitrex_refsource_MISC
- github.com/danfruehauf/NetworkManager-ssh/releases/tag/1.2.11mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.