Lucene search
K

158 matches found

BDU FSTEC
BDU FSTEC
added 2022/12/08 12:0 a.m.8 views

The vulnerability in the web interface of the FortiOS operating system allows a hacker to gain access to the device.

The vulnerability of the FortiOS operating system’s web interface is related to errors in processing input data. Exploiting this vulnerability can allow a malicious actor to gain access to the device by sending a specially crafted Access-Challenge response from the Radius server...

7.5CVSS7.7AI score0.00889EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2022/12/06 5:15 p.m.30 views

CVE-2022-35843

An authentication bypass by assumed-immutable data vulnerability CWE-302 in the FortiOS SSH login component 7.2.0, 7.0.0 through 7.0.7, 6.4.0 through 6.4.9, 6.2 all versions, 6.0 all versions and FortiProxy SSH login component 7.0.0 through 7.0.5, 2.0.0 through 2.0.10, 1.2.0 all versions may allo...

9.8CVSS0.00889EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/12/06 4:0 p.m.16 views

CVE-2022-35843

An authentication bypass by assumed-immutable data vulnerability CWE-302 in the FortiOS SSH login component 7.2.0, 7.0.0 through 7.0.7, 6.4.0 through 6.4.9, 6.2 all versions, 6.0 all versions and FortiProxy SSH login component 7.0.0 through 7.0.5, 2.0.0 through 2.0.10, 1.2.0 all versions may allo...

8.1CVSS7.2AI score0.00889EPSS
Exploits0References1
CVE
CVE
added 2022/12/06 4:0 p.m.147 views

CVE-2022-35843

CVE-2022-35843 affects FortiOS SSH login component (and FortiProxy SSH) across multiple versions, allowing remote, unauthenticated login via a crafted Access-Challenge response from RADIUS. Affected: FortiOS 6.0–7.2.0 and 6.2–6.4.9; FortiProxy 1.2.0–2.0.10 and 7.0.0–7.0.5. Root cause described as...

9.8CVSS9.5AI score0.00889EPSS
Exploits0References1Affected Software2
Fortinet
Fortinet
added 2022/12/06 12:0 a.m.70 views

Protect

An authentication bypass by assumed-immutable data vulnerability CWE-302 in the FortiOS SSH login component may allow a remote and unauthenticated attacker to login into the device via sending specially crafted Access-Challenge response from the Radius server...

7.5CVSS9.1AI score0.00889EPSS
Exploits0Affected Software2
Positive Technologies
Positive Technologies
added 2022/12/06 12:0 a.m.6 views

PT-2022-5771 · Fortinet · Fortiproxy +1

Name of the Vulnerable Software and Affected Versions: FortiOS versions 6.0 through 7.2.0 FortiOS versions 6.2 through 6.4.9 FortiProxy versions 1.2.0 through 2.0.10 FortiProxy versions 7.0.0 through 7.0.5 Description: The issue is related to an authentication bypass by assumed-immutable data...

9.8CVSS9.6AI score0.00889EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2022/12/05 12:0 a.m.6 views

The vulnerability of the External RADIUS Server component of the Cisco Identity Services Engine (ISE) management interface allows a perpetrator to perform cross-site scripting attacks.

The vulnerability of the External RADIUS Server component of the Cisco Identity Services Engine ISE management interface is related to the lack of security measures for the web page structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

5.5CVSS5.6AI score0.00541EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2022/11/25 3:15 p.m.6 views

CVE-2022-38767

An issue was discovered in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure...

7.5CVSS5.8AI score0.01028EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/11/25 12:0 a.m.6 views

Wind River VxWorks 安全漏洞

Wind River VxWorks is an operating system from Wind River Systems, Inc. the industry-leading real-time operating system for building embedded devices and systems. A security vulnerability exists in Wind River VxWorks versions 6.9 and 7 that originates from allowing the Radius server to send...

7.5CVSS7.5AI score0.01028EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2022/11/23 12:0 a.m.46 views

CVE-2021-46854

modradius in ProFTPD before 1.3.7c allows memory disclosure to RADIUS servers because it copies blocks of 16 characters...

7.5CVSS7.3AI score0.01129EPSS
Exploits1
OSV
OSV
added 2022/04/06 7:15 p.m.5 views

CVE-2022-20756

A vulnerability in the RADIUS feature of Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to cause the affected system to stop processing RADIUS packets. This vulnerability is due to improper handling of certain RADIUS requests. An attacker could exploit this...

7.5CVSS5.8AI score0.01433EPSS
Exploits0References1
OSV
OSV
added 2022/02/14 9:4 p.m.27 views

CVE-2022-24705 Buffer Overflow via Crafted Ipv6 Prefix Attribute Type Client Request in accel-ppp v1.12

The radpacketrecv function in radius/packet.c suffers from a memcpy buffer overflow, resulting in an overly-large recvfrom into a fixed buffer that causes a buffer overflow and overwrites arbitrary memory. If the server connects with a malicious client, crafted client requests can remotely trigge...

9.8CVSS7.6AI score0.01182EPSS
Exploits0References3
Fedora
Fedora
added 2022/02/13 1:17 a.m.37 views

[SECURITY] Fedora 35 Update: hostapd-2.10-3.fc35

hostapd is a user space daemon for access point and authentication servers. It implements IEEE 802.11 access point management, IEEE 802.1X/WPA/WPA2/EAP Authenticators and RADIUS authentication server. hostapd is designed to be a "daemon" program that runs in the back-ground and acts as the backen...

9.8CVSS9.7AI score0.02944EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/02/10 7:47 a.m.6 views

CVE-2022-24704

The radpacketrecv function in opt/src/accel-pppd/radius/packet.c suffers from a buffer overflow vulnerability, whereby user input len is copied into a fixed buffer &attr-;val.integer without any bound checks. If the client connects to the server and sends a large radius packet, a buffer overflow...

9.8CVSS6.1AI score0.01182EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/10/22 8:15 p.m.7 views

CVE-2020-28968

Draytek VigorAP 1000C contains a stored cross-site scripting XSS vulnerability in the RADIUS Setting - RADIUS Server Configuration module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the username input field...

5.4CVSS6.2AI score0.00551EPSS
Exploits1References1
Prion
Prion
added 2021/10/22 8:15 p.m.14 views

Cross site scripting

Draytek VigorAP 1000C contains a stored cross-site scripting XSS vulnerability in the RADIUS Setting - RADIUS Server Configuration module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the username input field...

3.5CVSS5.2AI score0.00551EPSS
Exploits1References1Affected Software13
CVE
CVE
added 2021/10/22 7:20 p.m.53 views

CVE-2020-28968

The CVE-2020-28968 entry applies to Draytek VigorAP 1000C. A stored XSS vulnerability exists in the RADIUS Setting – RADIUS Server Configuration module, allowing an attacker to execute arbitrary web scripts or HTML via a crafted payload in the username input field. The documents do not specify af...

5.4CVSS5.2AI score0.00551EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/10/22 12:0 a.m.5 views

Draytek VigorAP 1000C 跨站脚本漏洞

DrayTek Corporation Draytek VigorAp is a wireless access point from DrayTek Corporation. The Draytek VigorAP 1000C suffers from a cross-site scripting vulnerability that stems from the software's lack of effective filtering and validation of user uploaded parameters in the RADIUS Settings - RADIU...

5.4CVSS5.8AI score0.00551EPSS
Exploits1References2
CVE
CVE
added 2021/10/19 6:17 p.m.68 views

CVE-2021-31378

CVE-2021-31378 affects Juniper Networks Junos OS in broadband subscriber management scenarios where RADIUS is used. An attacker can spoof messages from trusted RADIUS servers to a device after a subscriber logs in and requests logout, forcing the subscriber into a persistent “Terminating” state v...

7.5CVSS7AI score0.00975EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/02/01 2:15 p.m.18 views

CVE-2020-28194

Variable underflow exists in accel-ppp radius/packet.c when receiving a RADIUS vendor-specific attribute with length field is less than 2. It has an impact only when the attacker controls the RADIUS server, which can lead to arbitrary code execution...

9.8CVSS7.5AI score
Exploits0References2
Rows per page
Query Builder