Lucene search
K

28 matches found

OpenVAS
OpenVAS
added 2023/01/05 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-5785-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.02168EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2023/01/04 10:53 a.m.94 views

USN-5785-1: FreeRADIUS vulnerabilities

It was discovered that FreeRADIUS incorrectly handled multiple EAP-pwd handshakes. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 18.04 LTS. CVE-2019-17185 Shane Guan discovered that FreeRADIUS incorrectly handled memory when checking unkno...

7.5CVSS6.8AI score0.02168EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/01/04 12:0 a.m.43 views

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : FreeRADIUS vulnerabilities (USN-5785-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5785-1 advisory. It was discovered that FreeRADIUS incorrectly handled multiple EAP-pwd handshakes. An attacker could possibly use thi...

7.5CVSS6.9AI score0.02168EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2020:2391-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.02168EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2020:1018-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.02168EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2020:1023-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.02168EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2020:1020-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.02168EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.50 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : freeradius Multiple Vulnerabilities (NS-SA-2021-0037)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has freeradius packages installed that are affected by multiple vulnerabilities: - In FreeRADIUS 3.0.x before 3.0.20, the EAP-pwd module used a global OpenSSL BNCTX instance to handle all handshakes. This mean multiple threads...

7.5CVSS6.8AI score0.02168EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2020/11/12 12:0 a.m.25 views

Oracle Linux 8 : freeradius:3.0 (ELSA-2020-4799)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-4799 advisory. 3.0.20-3 - Require make for proper bootstrap execution, removes post script Resolves: bz1672285 3.0.20-2 - Fix breakage caused by OpenSSL FIPS regression Relate...

7.5CVSS6.9AI score0.02168EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/11/04 1:56 a.m.33 views

Moderate: Red Hat Security Advisory: freeradius:3.0 security and bug fix update

An update for the freeradius:3.0 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.8AI score0.02168EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2020/11/04 12:0 a.m.23 views

RHEL 8 : freeradius:3.0 (RHSA-2020:4799)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4799 advisory. FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service RADIUS server, designed to allow centralized...

7.5CVSS7AI score0.02168EPSS
Exploits0References9
OSV
OSV
added 2020/11/03 12:37 p.m.33 views

RLSA-2020:4799 Moderate: freeradius:3.0 security and bug fix update

FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service RADIUS server, designed to allow centralized authentication and authorization for a network. Security Fixes: freeradius: eap-pwd: DoS issues due to multithreaded BNCTX access CVE-2019-17185 Fo...

7.5CVSS7.8AI score0.02168EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2020/10/21 12:0 a.m.31 views

Scientific Linux Security Update : freeradius on SL7.x x86_64 (20201001)

Security Fixes : - freeradius: privilege escalation due to insecure logrotate configuration CVE-2019-10143 - freeradius: eap-pwd: Information leak due to aborting when needing more than 10 iterations CVE-2019-13456 - freeradius: eap-pwd: DoS issues due to multithreaded BNCTX access CVE-2019-17185...

7.5CVSS6.9AI score0.02168EPSS
Exploits4References4
Cent OS
Cent OS
added 2020/10/20 6:2 p.m.105 views

freeradius security update

CentOS Errata and Security Advisory CESA-2020:3984 An update for freeradius is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

7.5CVSS6.9AI score0.02168EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2020/10/20 12:0 a.m.48 views

CentOS 7 : freeradius (RHSA-2020:3984)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3984 advisory. - It was discovered freeradius up to and including version 3.0.19 does not correctly configure logrotate, allowing a local attacker who already has...

7.5CVSS7AI score0.03739EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2020/09/29 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for freeradius (EulerOS-SA-2020-2133)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.6AI score0.02168EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/09/28 12:0 a.m.38 views

EulerOS 2.0 SP3 : freeradius (EulerOS-SA-2020-2133)

According to the versions of the freeradius package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In FreeRADIUS 3.0.x before 3.0.20, the EAP-pwd module used a global OpenSSL BNCTX instance to handle all handshakes. This mean multiple threa...

7.5CVSS6.9AI score0.02168EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/09/01 12:0 a.m.32 views

SUSE SLES12 Security Update : freeradius-server (SUSE-SU-2020:2391-1)

This update for freeradius-server fixes the following issues : CVE-2019-13456: Fixed a side-channel password leak in EAP-pwd bsc1144524. CVE-2019-17185: Fixed a debial of service due to multithreaded BNCTX access bsc1166847. Note that Tenable Network Security has extracted the preceding descripti...

7.5CVSS6.9AI score0.02168EPSS
Exploits1References7
OSV
OSV
added 2020/08/31 11:30 a.m.4 views

SUSE-SU-2020:2391-1 Security update for freeradius-server

This update for freeradius-server fixes the following issues: - CVE-2019-13456: Fixed a side-channel password leak in EAP-pwd bsc1144524. - CVE-2019-17185: Fixed a debial of service due to multithreaded BNCTX access bsc1166847...

7.5CVSS6.8AI score0.02168EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2020/08/31 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for freeradius (EulerOS-SA-2020-1847)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.02168EPSS
Exploits0References2
Rows per page
Query Builder