CVE-2022-41861

Опубликовано: 22 апр. 2022

Источник: redhat

CVSS3: 7.5

EPSS Низкий

Описание

A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	freeradius	Out of support scope
Red Hat Enterprise Linux 7	freeradius	Out of support scope
Red Hat Enterprise Linux 8	freeradius	Fixed	RHSA-2023:2870	16.05.2023
Red Hat Enterprise Linux 9	freeradius	Fixed	RHSA-2023:2166	09.05.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-20

https://bugzilla.redhat.com/show_bug.cgi?id=2078487freeradius: Crash on invalid abinary data

EPSS

Процентиль: 53%

0.00305

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2022-41861

CVSS3: 6.5

ubuntu

около 3 лет назад

A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.

CVE-2022-41861

CVSS3: 6.5

nvd

около 3 лет назад

A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.

CVE-2022-41861

CVSS3: 6.5

msrc

около 3 лет назад

A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.

CVE-2022-41861

CVSS3: 6.5

debian

около 3 лет назад

A flaw was found in freeradius. A malicious RADIUS client or home serv ...

GHSA-3886-rc87-ccgx

CVSS3: 6.5

github

около 3 лет назад

A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.

EPSS

Процентиль: 53%

0.00305

Низкий

7.5 High

CVSS3