CVE & CISA-KEV Catalog

CVE-2024-6501

LOW
3.1
CVSS v3
NVD

Description

A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service.

How to fix

Remediation Available
network-managerDebian
Fixed in:1.42.4-1+deb12u1CVE-2024-6501
Fixed in:1.49.90-2CVE-2024-6501
Fixed in:1.49.90-2CVE-2024-6501
NetworkManagerRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManagerRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-adslRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-adslRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-adsl-debuginfoRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-adsl-debuginfoRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-bluetoothRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-bluetoothRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-bluetooth-debuginfoRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-bluetooth-debuginfoRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-cloud-setupRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-cloud-setupRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-cloud-setup-debuginfoRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-cloud-setup-debuginfoRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-config-connectivity-redhatRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-config-connectivity-redhatRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-config-serverRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-config-serverRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-debuginfoRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-debuginfoRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-debugsourceRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-debugsourceRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-dispatcher-routing-rulesRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-dispatcher-routing-rulesRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-initscripts-updownRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-initscripts-updownRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-libnmRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-libnmRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-libnm-debuginfoRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-libnm-debuginfoRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-libnm-develRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-libnm-develRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-ovsRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-ovsRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-ovs-debuginfoRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-ovs-debuginfoRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-pppRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-pppRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-ppp-debuginfoRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-ppp-debuginfoRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-teamRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-teamRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-team-debuginfoRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-team-debuginfoRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-tuiRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-tuiRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-tui-debuginfoRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-tui-debuginfoRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-wifiRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-wifiRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-wifi-debuginfoRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-wifi-debuginfoRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-wwanRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-wwanRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-wwan-debuginfoRed Hat / RHEL
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
NetworkManager-wwan-debuginfoRocky
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317
Fixed in:1:1.48.10-2.el9_5RHSA-2024:9317

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityHigh
Privileges RequiredNone
User InteractionRequired
ScopeUnchanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityLow

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L

Exploit Intelligence

0.45%probability of exploitation in 30 days
36thpercentile

Low risk: more likely to be exploited than 36% of all known CVEs.

References

Related Vulnerabilities

Other CWE-400 (Resource Exhaustion) vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2023-44487High7.5100%KEVFix
CVE-2021-44228Critical10.0100%KEV + RansomFix
CVE-2011-3192High7.899%-Fix
CVE-2019-11478Medium5.395%-Fix
CVE-2024-25617Medium5.389%-Fix
CVE-2018-1000115High7.589%-Fix
Embed a live status badge for CVE-2024-6501
CVE-2024-6501 severity badge

Markdown

[![CVE-2024-6501](https://tridentstack.com/cve/badge/CVE-2024-6501.svg)](https://tridentstack.com/cve/CVE-2024-6501)

HTML

<a href="https://tridentstack.com/cve/CVE-2024-6501"><img src="https://tridentstack.com/cve/badge/CVE-2024-6501.svg" alt="CVE-2024-6501"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.