Lucene search
+L

79 matches found

OSV
OSV
added 2022/12/30 10:39 p.m.11 views

MGASA-2022-0482 Updated freeradius packages fix security vulnerability

Information leakage in EAP-PWD. CVE-2022-41859 Crash on unknown option in EAP-SIM. CVE-2022-41860 Crash on invalid abinary data. CVE-2022-41861...

7.5CVSS6.7AI score0.01171EPSS
Exploits0References4
Mageia
Mageia
added 2022/12/30 10:39 p.m.57 views

Updated freeradius packages fix security vulnerability

Information leakage in EAP-PWD. CVE-2022-41859 Crash on unknown option in EAP-SIM. CVE-2022-41860 Crash on invalid abinary data. CVE-2022-41861...

7.5CVSS6.9AI score0.01171EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/12/28 12:0 a.m.35 views

SUSE SLES15: freeradius-server / freeradius-server-devel / etc (SUSE-SU-2022:4620-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4620-1 advisory. - CVE-2022-41859: Fixes an information leakage in EAP-PWD bsc1206204. - CVE-2022-41860: Fixes a crash on unknown option in EAP-SIM...

7.5CVSS6.9AI score0.01171EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2022/12/28 12:0 a.m.33 views

SUSE SLES15: freeradius-server / freeradius-server-devel / freeradius-server-doc / etc (SUSE-SU-2022:4626-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4626-1 advisory. - CVE-2022-41859: Fixes an information leakage in EAP-PWD bsc1206204. - CVE-2022-41860: Fixes a crash on unknown opti...

7.5CVSS6.9AI score0.01171EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2022/12/28 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2022:4626-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.01171EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/12/28 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2022:4622-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.01171EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/12/28 12:0 a.m.28 views

SUSE SLES15: freeradius-server / freeradius-server-devel / freeradius-server-doc / etc (SUSE-SU-2022:4622-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4622-1 advisory. - CVE-2022-41859: Fixes an information leakage in EAP-PWD bsc1206204. - CVE-2022-41860: Fixes a crash on unknown opti...

7.5CVSS6.9AI score0.01171EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2022/12/28 12:0 a.m.33 views

SUSE SLES12: freeradius-server / freeradius-server-devel / freeradius-server-doc / etc (SUSE-SU-2022:4621-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4621-1 advisory. - CVE-2022-41859: Fixes an information leakage in EAP-PWD bsc1206204. - CVE-2022-41860: Fixes a crash on unknown option in EAP-SIM...

7.5CVSS6.9AI score0.01171EPSS
Exploits0References10
OSV
OSV
added 2022/12/27 7:5 a.m.8 views

SUSE-SU-2022:4622-1 Security update for freeradius-server

This update for freeradius-server fixes the following issues: - CVE-2022-41859: Fixes an information leakage in EAP-PWD bsc1206204. - CVE-2022-41860: Fixes a crash on unknown option in EAP-SIM bsc1206205. - CVE-2022-41861: Fixes a crash on invalid abinary data bsc1206206...

7.5CVSS6.7AI score0.01171EPSS
Exploits0References7
OSV
OSV
added 2022/12/27 7:4 a.m.5 views

SUSE-SU-2022:4621-1 Security update for freeradius-server

This update for freeradius-server fixes the following issues: - CVE-2022-41859: Fixes an information leakage in EAP-PWD bsc1206204. - CVE-2022-41860: Fixes a crash on unknown option in EAP-SIM bsc1206205. - CVE-2022-41861: Fixes a crash on invalid abinary data bsc1206206...

7.5CVSS6.7AI score0.01171EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/12/22 12:0 a.m.24 views

Fedora 36 : freeradius (2022-98832b2cc2)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-98832b2cc2 advisory. Update to upstream release 3.0.26. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessu...

7.5CVSS6.9AI score0.01171EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/12/14 12:0 a.m.24 views

CVE-2022-41860

In freeradius, when an EAP-SIM supplicant sends an unknown SIM option, the server will try to look that option up in the internal dictionaries. This lookup will fail, but the SIM code will not check for that failure. Instead, it will dereference a NULL pointer, and cause the server to crash...

7.5CVSS7.1AI score0.01171EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2022/12/07 5:1 p.m.36 views

CVE-2022-41860

In freeradius, when an EAP-SIM supplicant sends an unknown SIM option, the server will try to look that option up in the internal dictionaries. This lookup will fail, but the SIM code will not check for that failure. Instead, it will dereference a NULL pointer, and cause the server to crash...

7.5CVSS7.3AI score0.01171EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/04/22 12:0 a.m.4 views

PT-2022-26103 · Unknown +8 · Freeradius +7

Name of the Vulnerable Software and Affected Versions: freeradius affected versions not specified Description: The issue occurs when an EAP-SIM supplicant sends an unknown SIM option to the server. The server attempts to look up this option in its internal dictionaries, which fails. However, the...

7.5CVSS6.8AI score0.02168EPSS
Exploits0References71
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2020:3424-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.7AI score0.04989EPSS
Exploits1References24
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.79 views

SUSE SLED15 / SLES15 Security Update : wpa_supplicant (SUSE-SU-2020:3380-1) (KRACK)

This update for wpasupplicant fixes the following issues : Security issue fixed : CVE-2019-16275: Fixed an AP mode PMF disconnection protection bypass bsc1150934. Non-security issues fixed : Enable SAE support jscSLE-14992. Limit P2PDEVICE name to appropriate ifname size. Fix wicked wlan bsc11569...

8.1CVSS7.1AI score0.04989EPSS
Exploits1References67
Tenable Nessus
Tenable Nessus
added 2020/11/30 12:0 a.m.248 views

openSUSE Security Update : wpa_supplicant (openSUSE-2020-2059) (KRACK)

This update for wpasupplicant fixes the following issues : Security issue fixed : - CVE-2019-16275: Fixed an AP mode PMF disconnection protection bypass bsc1150934. Non-security issues fixed : - Enable SAE support jscSLE-14992. - Limit P2PDEVICE name to appropriate ifname size. - Fix wicked wlan...

8.1CVSS7.1AI score0.04989EPSS
Exploits1References44
OPENSUSE Linux
OPENSUSE Linux
added 2020/11/26 12:0 a.m.47 views

Security update for wpa_supplicant (moderate)

openSUSE Security Update: Security update for wpasupplicant Announcement ID: openSUSE-SU-2020:2053-1 Rating: moderate References: 1131644 1131868 1131870 1131871 1131872 1131874 1133640 1144443 1150934 1156920 1166933 1167331 930077 930078 930079 Cross-References: CVE-2015-4141 CVE-2015-4142...

8.1CVSS7AI score0.04989EPSS
Exploits1References15
OpenVAS
OpenVAS
added 2020/02/16 12:0 a.m.41 views

openSUSE: Security Advisory for hostapd (openSUSE-SU-2020:0222-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS7.5AI score0.04989EPSS
Exploits1References2
Rows per page
Query Builder