Accel-ppp Security Vulnerabilities and Issues — Accel-ppp CVE List

Lucene search

Accel-pppAccel-ppp

4 matches found

CVE•added 2022/02/14 10:15 p.m.•109 views

CVE-2022-24705

The rad_packet_recv function in radius/packet.c suffers from a memcpy buffer overflow, resulting in an overly-large recvfrom into a fixed buffer that causes a buffer overflow and overwrites arbitrary memory. If the server connects with a malicious client, crafted client requests can remotely trigge...

9.8CVSS9.8AI score0.00436EPSS

CVE•added 2022/02/14 10:15 p.m.•101 views

CVE-2022-24704

The rad_packet_recv function in opt/src/accel-pppd/radius/packet.c suffers from a buffer overflow vulnerability, whereby user input len is copied into a fixed buffer &attr->val.integer without any bound checks. If the client connects to the server and sends a large radius packet, a buffer overfl...

9.8CVSS9.8AI score0.00436EPSS

CVE•added 2022/03/16 3:15 p.m.•79 views

CVE-2022-0982

The telnet_input_char function in opt/src/accel-pppd/cli/telnet.c suffers from a memory corruption vulnerability, whereby user input cmdline_len is copied into a fixed buffer b->buf without any bound checks. If the server connects with a malicious client, crafted client requests can remotely tri...

9.8CVSS9.8AI score0.00411EPSS

CVE•added 2022/05/16 2:15 p.m.•60 views

CVE-2021-42870

ACCEL-PPP 1.12.0 has an out-of-bounds read in post_msg when processing a call_clear_request.

7.5CVSS7.4AI score0.00266EPSS