Vpnc

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2018-10900	SUSE S.A. Vpnc		0.04	—	0.05		Jul 26, 2018	Network Manager VPNC plugin (aka networkmanager-vpnc) before version 1.2.6 is vulnerable to a privilege escalation attack. A new line character can be used to inject a Password helper parameter into the configuration data passed to VPNC, allowing an attacker to execute arbitrary…
CVE-2011-2660	SUSE S.A. Linux Enterprise Desktop		0.00	—	0.03		Sep 6, 2011	The modify_resolvconf_suse script in the vpnc package before 0.5.1-55.10.1 in SUSE Linux Enterprise Desktop 11 SP1 might allow remote attackers to execute arbitrary commands via a crafted DNS domain name.

CVE-2018-10900Jul 26, 2018
SUSE S.A.
Vpnc
risk 0.04cvss —epss 0.05
Network Manager VPNC plugin (aka networkmanager-vpnc) before version 1.2.6 is vulnerable to a privilege escalation attack. A new line character can be used to inject a Password helper parameter into the configuration data passed to VPNC, allowing an attacker to execute arbitrary…
CVE-2011-2660Sep 6, 2011
SUSE S.A.
Linux Enterprise Desktop
risk 0.00cvss —epss 0.03
The modify_resolvconf_suse script in the vpnc package before 0.5.1-55.10.1 in SUSE Linux Enterprise Desktop 11 SP1 might allow remote attackers to execute arbitrary commands via a crafted DNS domain name.