exploitDog

GHSA-4x43-fwgv-cq8j

Опубликовано: 25 окт. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

A first-factor authentication bypass vulnerability exists in the PingFederate with PingID Radius PCV when a MSCHAP authentication request is sent via a maliciously crafted RADIUS client request.

A first-factor authentication bypass vulnerability exists in the PingFederate with PingID Radius PCV when a MSCHAP authentication request is sent via a maliciously crafted RADIUS client request.

Ссылки

EPSS

Процентиль: 13%

0.00043

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-288

CWE-306

Связанные уязвимости

CVE-2023-39930

CVSS3: 7.5

nvd

больше 2 лет назад

A first-factor authentication bypass vulnerability exists in the PingFederate with PingID Radius PCV when a MSCHAP authentication request is sent via a maliciously crafted RADIUS client request.

EPSS

Процентиль: 13%

0.00043

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-288

CWE-306