CVE-2021-32642
- EPSS 1.04%
- Veröffentlicht 28.05.2021 17:15:07
- Zuletzt bearbeitet 21.11.2024 06:07:26
radsecproxy is a generic RADIUS proxy that supports both UDP and TLS (RadSec) RADIUS transports. Missing input validation in radsecproxy's `naptr-eduroam.sh` and `radsec-dynsrv.sh` scripts can lead to configuration injection via crafted radsec peer d...
CVE-2012-4523
- EPSS 0.19%
- Veröffentlicht 20.11.2012 00:55:01
- Zuletzt bearbeitet 11.04.2025 00:51:21
radsecproxy before 1.6.1 does not properly verify certificates when there are configuration blocks with CA settings that are unrelated to the block being used for verifying the certificate chain, which might allow remote attackers to bypass intended ...
CVE-2012-4566
- EPSS 0.18%
- Veröffentlicht 20.11.2012 00:55:01
- Zuletzt bearbeitet 11.04.2025 00:51:21
The DTLS support in radsecproxy before 1.6.2 does not properly verify certificates when there are configuration blocks with CA settings that are unrelated to the block being used for verifying the certificate chain, which might allow remote attackers...