Freeradius

Freeradius

47 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2015-4680

  • EPSS 0.38%
  • Veröffentlicht 05.04.2017 17:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

FreeRADIUS 2.2.x before 2.2.8 and 3.0.x before 3.0.9 does not properly check revocation of intermediate CA certificates.

5.9

CVE-2015-8762

  • EPSS 0.5%
  • Veröffentlicht 27.03.2017 17:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The EAP-PWD module in FreeRADIUS 3.0 through 3.0.8 allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a zero-length EAP-PWD packet.

8.1

CVE-2015-8764

  • EPSS 0.47%
  • Veröffentlicht 27.03.2017 17:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Off-by-one error in the EAP-PWD module in FreeRADIUS 3.0 through 3.0.8, which triggers a buffer overflow.

8.1

CVE-2015-8763

  • EPSS 0.55%
  • Veröffentlicht 27.03.2017 17:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The EAP-PWD module in FreeRADIUS 3.0 through 3.0.8 allows remote attackers to have unspecified impact via a crafted (1) commit or (2) confirm message, which triggers an out-of-bounds read.

7.5

CVE-2014-2015

Exploit
  • EPSS 0.88%
  • Veröffentlicht 02.11.2014 00:55:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Stack-based buffer overflow in the normify function in the rlm_pap module (modules/rlm_pap/rlm_pap.c) in FreeRADIUS 2.x, possibly 2.2.3 and earlier, and 3.x, possibly 3.0.1 and earlier, might allow attackers to cause a denial of service (crash) and p...

6

CVE-2011-4966

  • EPSS 0.62%
  • Veröffentlicht 12.03.2013 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

modules/rlm_unix/rlm_unix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired passwo...

6.8

CVE-2012-3547

  • EPSS 16.89%
  • Veröffentlicht 18.09.2012 17:55:07
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Stack-based buffer overflow in the cbtls_verify function in FreeRADIUS 2.1.10 through 2.1.12, when using TLS-based EAP methods, allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via a long "not af...

5.8

CVE-2011-2701

  • EPSS 0.45%
  • Veröffentlicht 04.08.2011 02:45:32
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The ocsp_check function in rlm_eap_tls.c in FreeRADIUS 2.1.11, when OCSP is enabled, does not properly parse replies from OCSP responders, which allows remote attackers to bypass authentication by using the EAP-TLS protocol with a revoked X.509 clien...

4.3

CVE-2010-3697

  • EPSS 0.83%
  • Veröffentlicht 07.10.2010 21:00:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The wait_for_child_to_die function in main/event.c in FreeRADIUS 2.1.x before 2.1.10, in certain circumstances involving long-term database outages, does not properly handle long queue times for requests, which allows remote attackers to cause a deni...

4.3

CVE-2010-3696

  • EPSS 0.83%
  • Veröffentlicht 07.10.2010 21:00:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in certain non-default builds, does not properly handle the DHCP Relay Agent Information option, which allows remote attackers to cause a denial of service (infinite loop and daemon outag...