CVE-2016-3698 in NetworkManagerinfo

Summary

libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks or cause a denial of service (network connectivity disruption) by advertising a node as a router from a non-local network.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

03/30/2016

Disclosure

06/13/2016

Moderation

VulDB entry created

Entries

VDB-87905 (1)

CPE

ready

CWE

CWE-284 (Confirmed)

CVSS

8.1

EPSS

0.02062

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-3698
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-3698
CVE Details	https://www.cvedetails.com/cve/CVE-2016-3698/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!