A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed Manufacturer Usage Description (MUD) URLs. A local user can exploit this flaw to escalate privileges by triggering a script via a crafted MUD URL, provided an administrator has explicitly configured NetworkManager to use dhclient. This issue does not affect default configurations of NetworkManager.
1.0.4-0ubuntu101.0.4-0ubuntu51.0.4-0ubuntu61.0.4-0ubuntu71.0.4-0ubuntu81.0.4-0ubuntu91.1.93-0ubuntu21.1.93-0ubuntu31.1.93-0ubuntu41.2.0-0ubuntu0.16.04.2+7 more1.10.14-0ubuntu21.10.4-1ubuntu21.10.4-1ubuntu31.10.6-2ubuntu11.10.6-2ubuntu1.11.10.6-2ubuntu1.21.10.6-2ubuntu1.41.8.4-1ubuntu31.8.4-1ubuntu41.20.4-2ubuntu21.20.4-2ubuntu31.20.8-1ubuntu21.22.10-1ubuntu11.22.10-1ubuntu2.11.22.10-1ubuntu2.21.22.10-1ubuntu2.31.22.10-1ubuntu2.41.22.4-1ubuntu21.22.8-1ubuntu11.32.12-0ubuntu11.32.12-0ubuntu21.34.0-2ubuntu31.35.90-0ubuntu11.35.91-0ubuntu11.35.92-1ubuntu11.36.0-1ubuntu21.36.2-1ubuntu11.36.4-1ubuntu11.36.4-2ubuntu1+6 more1.44.2-1ubuntu11.44.2-1ubuntu1.11.44.2-1ubuntu21.44.2-7ubuntu11.45.90-1ubuntu11.45.90-1ubuntu31.46.0-1ubuntu21.46.0-1ubuntu2.21.46.0-1ubuntu2.31.46.0-1ubuntu2.4+3 more1.52.0-1ubuntu11.52.0-1ubuntu31.52.0-1ubuntu3.11.52.0-1ubuntu3.21.52.0-1ubuntu3.31.52.0-1ubuntu3.41.52.0-1ubuntu31.52.0-1ubuntu41.54.2-2ubuntu11.54.2-2ubuntu21.54.3-2ubuntu11.54.3-2ubuntu21.54.3-2ubuntu3Exploitability
AV:LAC:HPR:LUI:RScope
S:UImpact
C:HI:HA:HCVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H