exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 25

CVE-2022-41860

около 3 лет назад

In freeradius, when an EAP-SIM supplicant sends an unknown SIM option, the server will try to look that option up in the internal dictionaries. This lookup will fail, but the SIM code will not check for that failure. Instead, it will dereference a NULL pointer, and cause the server to crash.

CVSS3: 7.5

EPSS: Низкий

CVE-2022-41860

около 3 лет назад

In freeradius when an EAP-SIM supplicant sends an unknown SIM option the server will try to look that option up in the internal dictionaries. This lookup will fail but the SIM code will not check for that failure. Instead it will dereference a NULL pointer and cause the server to crash.

CVSS3: 7.5

EPSS: Низкий

CVE-2022-41860

около 3 лет назад

In freeradius, when an EAP-SIM supplicant sends an unknown SIM option, ...

CVSS3: 7.5

EPSS: Низкий

GHSA-cmvm-c7qf-pmc5

около 3 лет назад

In freeradius, the EAP-PWD function compute_password_element() leaks information about the password which allows an attacker to substantially reduce the size of an offline dictionary attack.

CVSS3: 7.5

EPSS: Низкий

GHSA-cfm7-f9p7-7m2w

около 3 лет назад

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2022-41860 In freeradius, when an EAP-SIM supplicant sends an unknown SIM option, the server will try to look that option up in the internal dictionaries. This lookup will fail, but the SIM code will not check for that failure. Instead, it will dereference a NULL pointer, and cause the server to crash.	CVSS3: 7.5	0% Низкий	около 3 лет назад
CVE-2022-41860 In freeradius when an EAP-SIM supplicant sends an unknown SIM option the server will try to look that option up in the internal dictionaries. This lookup will fail but the SIM code will not check for that failure. Instead it will dereference a NULL pointer and cause the server to crash.	CVSS3: 7.5	0% Низкий	около 3 лет назад
CVE-2022-41860 In freeradius, when an EAP-SIM supplicant sends an unknown SIM option, ...	CVSS3: 7.5	0% Низкий	около 3 лет назад
GHSA-cmvm-c7qf-pmc5 In freeradius, the EAP-PWD function compute_password_element() leaks information about the password which allows an attacker to substantially reduce the size of an offline dictionary attack.	CVSS3: 7.5	0% Низкий	около 3 лет назад
GHSA-cfm7-f9p7-7m2w In freeradius, when an EAP-SIM supplicant sends an unknown SIM option, the server will try to look that option up in the internal dictionaries. This lookup will fail, but the SIM code will not check for that failure. Instead, it will dereference a NULL pointer, and cause the server to crash.	CVSS3: 7.5	0% Низкий	около 3 лет назад

Уязвимостей на страницу