3 matches found
GHSA-386J-6M86-78F9 OpenAM: Unauthenticated Authentication Bypass via RADIUS Spoofing
Summary Description An Improper Verification of Cryptographic Signature CWE-347 issue in OpenAM's RADIUS authentication module allows an unauthenticated network attacker to spoof an Access-Accept response and obtain an OpenAM session for any RADIUS username, without knowing the configured shared...
EUVD-2021-18288
Malware in sbrugna...
CVE-2021-31378
In broadband environments, including but not limited to Enhanced Subscriber Management, CHAP, PPP, DHCP, etc., on Juniper Networks Junos OS devices where RADIUS servers are configured for managing subscriber access and a subscriber is logged in and then requests to logout, the subscriber may be...