The EAP-PWD module in FreeRADIUS 3.0 through 3.0.8 allows remote attackers to have unspecified impact via a crafted (1) commit or (2) confirm message, which triggers an out-of-bounds read.
CPE | Name | Operator | Version |
---|---|---|---|
freeradius | eq | 3.0.5 | |
freeradius | eq | 3.0.8 | |
freeradius | eq | 3.0.1 | |
freeradius | eq | 3.0.3 | |
freeradius | eq | 3.0.6 | |
freeradius | eq | 3.0.0 | |
freeradius | eq | 3.0.4 | |
freeradius | eq | 3.0.2 | |
freeradius | eq | 3.0.7 |