{"id":"USN-2581-1","summary":"network-manager vulnerability","details":"Tavis Ormandy discovered that NetworkManager incorrectly filtered paths\nwhen requested to read modem device contexts. A local attacker could\npossibly use this issue to bypass privileges and manipulate modem device\nconfiguration or read arbitrary files.\n","modified":"2026-02-10T04:40:53Z","published":"2015-04-28T13:55:38Z","related":["UBUNTU-CVE-2015-1322"],"upstream":["CVE-2015-1322","UBUNTU-CVE-2015-1322"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-2581-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2015-1322"}],"affected":[{"package":{"name":"network-manager","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/network-manager@0.9.8.8-0ubuntu7.1?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.9.8.8-0ubuntu7.1"}]}],"versions":["0.9.8.0-0ubuntu22","0.9.8.4-0ubuntu3","0.9.8.8-0ubuntu1","0.9.8.8-0ubuntu4","0.9.8.8-0ubuntu5","0.9.8.8-0ubuntu7"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"gir1.2-networkmanager-1.0","binary_version":"0.9.8.8-0ubuntu7.1"},{"binary_name":"libnm-glib-dev","binary_version":"0.9.8.8-0ubuntu7.1"},{"binary_name":"libnm-glib-vpn-dev","binary_version":"0.9.8.8-0ubuntu7.1"},{"binary_name":"libnm-glib-vpn1","binary_version":"0.9.8.8-0ubuntu7.1"},{"binary_name":"libnm-glib4","binary_version":"0.9.8.8-0ubuntu7.1"},{"binary_name":"libnm-util-dev","binary_version":"0.9.8.8-0ubuntu7.1"},{"binary_name":"libnm-util2","binary_version":"0.9.8.8-0ubuntu7.1"},{"binary_name":"network-manager","binary_version":"0.9.8.8-0ubuntu7.1"},{"binary_name":"network-manager-dev","binary_version":"0.9.8.8-0ubuntu7.1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2581-1.json","cves_map":{"ecosystem":"Ubuntu:14.04:LTS","cves":[{"id":"CVE-2015-1322","severity":[{"type":"Ubuntu","score":"medium"}]}]}}}],"schema_version":"1.7.3"}