CVE-2021-32642
- EPSS 1.04%
- Published 28.05.2021 17:15:07
- Last modified 21.11.2024 06:07:26
radsecproxy is a generic RADIUS proxy that supports both UDP and TLS (RadSec) RADIUS transports. Missing input validation in radsecproxy's `naptr-eduroam.sh` and `radsec-dynsrv.sh` scripts can lead to configuration injection via crafted radsec peer d...
CVE-2012-4523
- EPSS 0.19%
- Published 20.11.2012 00:55:01
- Last modified 11.04.2025 00:51:21
radsecproxy before 1.6.1 does not properly verify certificates when there are configuration blocks with CA settings that are unrelated to the block being used for verifying the certificate chain, which might allow remote attackers to bypass intended ...
CVE-2012-4566
- EPSS 0.18%
- Published 20.11.2012 00:55:01
- Last modified 11.04.2025 00:51:21
The DTLS support in radsecproxy before 1.6.2 does not properly verify certificates when there are configuration blocks with CA settings that are unrelated to the block being used for verifying the certificate chain, which might allow remote attackers...