CVE-2022-41861

Опубликовано: 17 янв. 2023

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.

Ссылки

https://freeradius.org/security/
Patch
Vendor Advisory
https://github.com/FreeRADIUS/freeradius-server/commit/0ec2b39d260e
Patch
Third Party Advisory
https://freeradius.org/security/
Patch
Vendor Advisory
https://github.com/FreeRADIUS/freeradius-server/commit/0ec2b39d260e
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:freeradius:freeradius:*:*:*:*:*:*:*:*

Версия до 3.0.25 (включая)

EPSS

Процентиль: 55%

0.00322

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-400

CWE-20

Связанные уязвимости

CVE-2022-41861

CVSS3: 6.5

ubuntu

больше 2 лет назад

A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.

CVE-2022-41861

CVSS3: 7.5

redhat

больше 3 лет назад

A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.

CVE-2022-41861

CVSS3: 6.5

debian

больше 2 лет назад

A flaw was found in freeradius. A malicious RADIUS client or home serv ...

GHSA-3886-rc87-ccgx

CVSS3: 6.5

github

больше 2 лет назад

A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.

SUSE-SU-2023:0135-1

suse-cvrf

больше 2 лет назад

Security update for freeradius-server

EPSS

Процентиль: 55%

0.00322

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-400

CWE-20