EUVD-2019-0109

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Creates sequential IDs in pyrad before 2.1, allowing remote attackers to spoof packets easily.

Reporter	Title	Published	Views	Family All 17
Circl	CVE-2013-0342	9 Mar 202409:11	–	circl
CNVD	pyrad packet spoofing vulnerability	10 Dec 201900:00	–	cnvd
CVE	CVE-2013-0342	9 Dec 201920:55	–	cve
Cvelist	CVE-2013-0342	9 Dec 201920:55	–	cvelist
Debian CVE	CVE-2013-0342	9 Dec 201920:55	–	debiancve
Github Security Blog	pyrad uses sequential packet IDs	5 May 202200:29	–	github
NVD	CVE-2013-0342	9 Dec 201921:15	–	nvd
OSV	DEBIAN-CVE-2013-0342	9 Dec 201921:15	–	osv
OSV	GHSA-W4PX-9PGM-P2F3 pyrad uses sequential packet IDs	5 May 202200:29	–	osv
OSV	PYSEC-2019-154	9 Dec 201921:15	–	osv

[
  {
    "enisaIdVendor": [
      {
        "id": "ff3f67a0-8ea9-3257-90a1-c2fcee4d302f",
        "vendor": {
          "name": "pyrad"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "e2be8cf8-a305-3418-b0db-2f3d07b3340a",
        "product": {
          "name": "pyrad"
        },
        "product_version": "before 2.1"
      }
    ]
  }
]

Source	Link
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/82134
openwall	www.openwall.com/lists/oss-security/2013/02/21/27
securityfocus	www.securityfocus.com/bid/57984
github	www.github.com/pyradius/pyrad/commit/38f74b36814ca5b1a27d9898141126af4953bee5
openwall	www.openwall.com/lists/oss-security/2013/02/15/9
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
openwall	www.openwall.com/lists/oss-security/2013/02/22/2
nvd	www.nvd.nist.gov/vuln/detail/CVE-2013-0342
github	www.github.com/pypa/advisory-database/tree/main/vulns/pyrad/PYSEC-2019-154.yaml
web	www.web.archive.org/web/20200302193833/http://www.securityfocus.com/bid/57984

07 Oct 2025 00:30Current

4.5Medium risk

Vulners AI Score4.5

CVSS 3.14.3

CVSS 24.3

EPSS0.0129

pyrad vulnerability sequential packet id remote attack packet spoofing