CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-4929

Malware in sbrugna...

6.5CVSS6.4AI score0.00249EPSS

Exploits1References11

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2017-18086

Malware in sbrugna...

9.8CVSS9.2AI score0.00637EPSS

Exploits0References10

Debian•added 2025/06/26 2:37 p.m.•6 views

[SECURITY] [DLA 4232-1] freeradius security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4232-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA June 26, 2025 https://wiki.debian.org/LTS -...

7.5CVSS7.5AI score0.00393EPSS

Exploits0

OSV•added 2025/06/26 12:0 a.m.•2 views

DLA-4232-1 freeradius - security update

Bulletin has no description...

7.5CVSS7.2AI score0.00393EPSS

Exploits0

OSV•added 2023/12/22 11:6 a.m.•1 views

OESA-2023-1955 freeradius security update

Remote Authentication Dial-In User Service RADIUS is a networking protocol that provides centralized Authentication, Authorization, and Accounting AAA or Triple A management for users who connect and use a network service. Security Fixes: In freeradius, the EAP-PWD function computepasswordelement...

7.5CVSS6.9AI score0.00221EPSS

Exploits0References2

OSV•added 2020/01/05 3:37 p.m.•7 views

MGASA-2020-0007 Updated freeradius packages fix security vulnerabilities

Updated freeradius packages fix security vulnerabilities: It was discovered freeradius does not correctly configure logrotate, allowing a local attacker who already has control of the radiusd user to escalate his privileges to root, by tricking logrotate into writing a radiusd-writable file to a...

7.5CVSS6.9AI score0.00657EPSS

Exploits4References5

OSV•added 2019/05/18 12:33 p.m.•6 views

MGASA-2019-0176 Updated freeradius packages fix security vulnerability

An attacker can reflect the received scalar and element from the server in it's own commit message, and subsequently reflect the confirm value as well. This causes the adversary to successfully authenticate as the victim CVE-2019-11234. An invalid curve attack allows an attacker to authenticate a...

9.8CVSS9.3AI score0.25852EPSS

Exploits0References5

OSV•added 2017/07/30 3:58 p.m.•10 views

MGASA-2017-0232 Updated freeradius packages fix security vulnerabilities

Fuzz testing of freeradius found multiple vulnerabilites that resulted in either the potential for remote code execution or a possible denial of service except for CVE-2017-10988 which was later determined to not actually result in any vulnerability...

9.8CVSS8AI score0.30218EPSS

Exploits0References3

Packet Storm•added 2009/09/11 12:0 a.m.•34 views

FreeRadius Packet Of Death

!/usr/bin/env python FreeRadius Packet Of Death Matthew Gillespie 2009-09-11 Requires RadiusAttr http://trac.secdev.org/scapy/attachment/ticket/92/radiuslib.py http://www.braindeadprojects.com/blog/what/freeradius-packet-of-death/ import sys from scapy.all import IP,UDP,send,Radius,RadiusAttr if...

5CVSS0.7AI score0.17898EPSS

Exploits3

RedHat Linux•added 2004/11/12 4:47 p.m.•34 views

Moderate: Red Hat Security Advisory: freeradius security update

Updated freeradius packages that fix a number of denial of service vulnerabilities as well as minor bugs are now available for Red Hat Enterprise Linux 3. FreeRADIUS is a high-performance and highly configurable free RADIUS server designed to allow centralized authentication and authorization for...

5CVSS5.8AI score0.05466EPSS

Exploits0References6

RedHat Linux•added 2003/12/10 4:59 p.m.•25 views

Moderate: Red Hat Security Advisory: freeradius security update

Updated FreeRADIUS packages are now available that fix a denial of service vulnerability. FreeRADIUS is an Internet authentication daemon, which implements the RADIUS protocol. It allows Network Access Servers NAS boxes to perform authentication for dial-up users. The raddecode function in...

5CVSS5.8AI score0.05986EPSS

Exploits0References3