Описание
FreeRADIUS before 3.0.19 does not prevent use of reflection for authentication spoofing, aka a "Dragonblood" issue, a similar issue to CVE-2019-9497.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 3.0.16+dfsg-1ubuntu3.1 |
| cosmic | released | 3.0.16+dfsg-3ubuntu1.1 |
| devel | released | 3.0.17+dfsg-1ubuntu2.1 |
| disco | released | 3.0.17+dfsg-1ubuntu2.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [code not present]] |
| esm-infra/bionic | released | 3.0.16+dfsg-1ubuntu3.1 |
| esm-infra/xenial | not-affected | code not present |
| precise/esm | DNE | |
| trusty | not-affected | code not present |
| trusty/esm | DNE | trusty was not-affected [code not present] |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
FreeRADIUS before 3.0.19 does not prevent use of reflection for authentication spoofing, aka a "Dragonblood" issue, a similar issue to CVE-2019-9497.
FreeRADIUS before 3.0.19 does not prevent use of reflection for authentication spoofing, aka a "Dragonblood" issue, a similar issue to CVE-2019-9497.
FreeRADIUS before 3.0.19 does not prevent use of reflection for authen ...
FreeRADIUS before 3.0.19 does not prevent use of reflection for authentication spoofing, aka a "Dragonblood" issue, a similar issue to CVE-2019-9497.
Уязвимость RADIUS-сервера FreeRADIUS, связанная с неправильной аутентификацией, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3