Vulnerabilities > Freeradius > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-17 | CVE-2022-41859 | Insufficiently Protected Credentials vulnerability in Freeradius In freeradius, the EAP-PWD function compute_password_element() leaks information about the password which allows an attacker to substantially reduce the size of an offline dictionary attack. | 7.5 |
| 2023-01-17 | CVE-2022-41860 | NULL Pointer Dereference vulnerability in Freeradius In freeradius, when an EAP-SIM supplicant sends an unknown SIM option, the server will try to look that option up in the internal dictionaries. | 7.5 |
| 2020-03-21 | CVE-2019-17185 | Improper Synchronization vulnerability in multiple products In FreeRADIUS 3.0.x before 3.0.20, the EAP-pwd module used a global OpenSSL BN_CTX instance to handle all handshakes. | 7.5 |
| 2020-02-24 | CVE-2015-9542 | Out-of-bounds Write vulnerability in multiple products add_password in pam_radius_auth.c in pam_radius 1.4.0 does not correctly check the length of the input password, and is vulnerable to a stack-based buffer overflow during memcpy(). | 7.5 |
| 2019-05-24 | CVE-2019-10143 | Incorrect Privilege Assignment vulnerability in multiple products It was discovered freeradius up to and including version 3.0.19 does not correctly configure logrotate, allowing a local attacker who already has control of the radiusd user to escalate his privileges to root, by tricking logrotate into writing a radiusd-writable file to a directory normally inaccessible by the radiusd user. | 7.0 |
| 2017-07-17 | CVE-2017-10987 | Out-of-bounds Read vulnerability in Freeradius An FR-GV-304 issue in FreeRADIUS 3.x before 3.0.15 allows "DHCP - Buffer over-read in fr_dhcp_decode_suboptions()" and a denial of service. | 7.5 |
| 2017-07-17 | CVE-2017-10986 | Infinite Loop vulnerability in Freeradius An FR-GV-303 issue in FreeRADIUS 3.x before 3.0.15 allows "DHCP - Infinite read in dhcp_attr2vp()" and a denial of service. | 7.5 |
| 2017-07-17 | CVE-2017-10985 | Infinite Loop vulnerability in Freeradius An FR-GV-302 issue in FreeRADIUS 3.x before 3.0.15 allows "Infinite loop and memory exhaustion with 'concat' attributes" and a denial of service. | 7.5 |
| 2017-07-17 | CVE-2017-10983 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Freeradius An FR-GV-206 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "DHCP - Read overflow when decoding option 63" and a denial of service. | 7.5 |
| 2017-07-17 | CVE-2017-10982 | Out-of-bounds Read vulnerability in Freeradius An FR-GV-205 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Buffer over-read in fr_dhcp_decode_options()" and a denial of service. | 7.5 |