CVE-2022-41861 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.5 MEDIUM	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 60%

Affected Products (NVD)

Vendor	Product	Version
freeradius	freeradius	𝑥 ≤ 3.0.25

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

freeradius

bookworm	3.2.1+dfsg-4+deb12u1 fixed
bullseye	no-dsa
sid	3.2.5+dfsg-3 fixed
trixie	3.2.5+dfsg-3 fixed

Ubuntu Releases

Ubuntu Product

Codename

freeradius

bionic	Fixed 3.0.16+dfsg-1ubuntu3.2 released
focal	Fixed 3.0.20+dfsg-3ubuntu0.2 released
jammy	Fixed 3.0.26~dfsg~git20220223.1.00ed0241fa-0ubuntu3.1 released
kinetic	not-affected
trusty	ignored
xenial	Fixed 2.2.8+dfsg-0.1ubuntu0.1+esm1 released

openSUSE / SLES Releases

openSUSE Product

Release

freeradius-server

suse enterprise sap 12 SP5	3.0.19-3.12.1 fixed
suse enterprise sap 15	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP7	3.2.4-150600.3.3.2 fixed
suse enterprise server 12 SP3	3.0.15-2.23.1 fixed
suse enterprise server 12 SP4	3.0.15-2.23.1 fixed
suse enterprise server 12 SP5	3.0.19-3.12.1 fixed
suse enterprise server 15	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP7	3.2.4-150600.3.3.2 fixed

freeradius-server-devel

suse enterprise sap 15	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP7	3.2.4-150600.3.3.2 fixed
suse enterprise server 15	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP7	3.2.4-150600.3.3.2 fixed

freeradius-server-doc

suse enterprise sap 12 SP5	3.0.19-3.12.1 fixed
suse enterprise server 12 SP3	3.0.15-2.23.1 fixed
suse enterprise server 12 SP4	3.0.15-2.23.1 fixed
suse enterprise server 12 SP5	3.0.19-3.12.1 fixed

freeradius-server-krb5

suse enterprise sap 12 SP5	3.0.19-3.12.1 fixed
suse enterprise sap 15	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP7	3.2.4-150600.3.3.2 fixed
suse enterprise server 12 SP3	3.0.15-2.23.1 fixed
suse enterprise server 12 SP4	3.0.15-2.23.1 fixed
suse enterprise server 12 SP5	3.0.19-3.12.1 fixed
suse enterprise server 15	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP7	3.2.4-150600.3.3.2 fixed

freeradius-server-ldap

suse enterprise sap 12 SP5	3.0.19-3.12.1 fixed
suse enterprise sap 15	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP7	3.2.4-150600.3.3.2 fixed
suse enterprise server 12 SP3	3.0.15-2.23.1 fixed
suse enterprise server 12 SP4	3.0.15-2.23.1 fixed
suse enterprise server 12 SP5	3.0.19-3.12.1 fixed
suse enterprise server 15	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP7	3.2.4-150600.3.3.2 fixed

freeradius-server-libs

suse enterprise sap 12 SP5	3.0.19-3.12.1 fixed
suse enterprise sap 15	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP7	3.2.4-150600.3.3.2 fixed
suse enterprise server 12 SP3	3.0.15-2.23.1 fixed
suse enterprise server 12 SP4	3.0.15-2.23.1 fixed
suse enterprise server 12 SP5	3.0.19-3.12.1 fixed
suse enterprise server 15	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP7	3.2.4-150600.3.3.2 fixed

freeradius-server-mysql

suse enterprise sap 12 SP5	3.0.19-3.12.1 fixed
suse enterprise sap 15	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP7	3.2.4-150600.3.3.2 fixed
suse enterprise server 12 SP3	3.0.15-2.23.1 fixed
suse enterprise server 12 SP4	3.0.15-2.23.1 fixed
suse enterprise server 12 SP5	3.0.19-3.12.1 fixed
suse enterprise server 15	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP7	3.2.4-150600.3.3.2 fixed

freeradius-server-perl

suse enterprise sap 12 SP5	3.0.19-3.12.1 fixed
suse enterprise sap 15	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP7	3.2.4-150600.3.3.2 fixed
suse enterprise server 12 SP3	3.0.15-2.23.1 fixed
suse enterprise server 12 SP4	3.0.15-2.23.1 fixed
suse enterprise server 12 SP5	3.0.19-3.12.1 fixed
suse enterprise server 15	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP7	3.2.4-150600.3.3.2 fixed

freeradius-server-postgresql

suse enterprise sap 12 SP5	3.0.19-3.12.1 fixed
suse enterprise sap 15	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP7	3.2.4-150600.3.3.2 fixed
suse enterprise server 12 SP3	3.0.15-2.23.1 fixed
suse enterprise server 12 SP4	3.0.15-2.23.1 fixed
suse enterprise server 12 SP5	3.0.19-3.12.1 fixed
suse enterprise server 15	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP7	3.2.4-150600.3.3.2 fixed

freeradius-server-python

suse enterprise sap 12 SP5	3.0.19-3.12.1 fixed
suse enterprise sap 15	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise server 12 SP3	3.0.15-2.23.1 fixed
suse enterprise server 12 SP4	3.0.15-2.23.1 fixed
suse enterprise server 12 SP5	3.0.19-3.12.1 fixed
suse enterprise server 15	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP1	3.0.16-150000.3.13.1 fixed

freeradius-server-python3

suse enterprise sap 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP7	3.2.4-150600.3.3.2 fixed
suse enterprise server 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP7	3.2.4-150600.3.3.2 fixed

freeradius-server-sqlite

suse enterprise sap 12 SP5	3.0.19-3.12.1 fixed
suse enterprise sap 15	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP7	3.2.4-150600.3.3.2 fixed
suse enterprise server 12 SP3	3.0.15-2.23.1 fixed
suse enterprise server 12 SP4	3.0.15-2.23.1 fixed
suse enterprise server 12 SP5	3.0.19-3.12.1 fixed
suse enterprise server 15	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP7	3.2.4-150600.3.3.2 fixed

freeradius-server-utils

suse enterprise sap 12 SP5	3.0.19-3.12.1 fixed
suse enterprise sap 15	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise sap 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise sap 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise sap 15 SP7	3.2.4-150600.3.3.2 fixed
suse enterprise server 12 SP3	3.0.15-2.23.1 fixed
suse enterprise server 12 SP4	3.0.15-2.23.1 fixed
suse enterprise server 12 SP5	3.0.19-3.12.1 fixed
suse enterprise server 15	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP1	3.0.16-150000.3.13.1 fixed
suse enterprise server 15 SP2	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP3	3.0.21-150200.3.12.1 fixed
suse enterprise server 15 SP4	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP5	3.0.25-150400.4.4.1 fixed
suse enterprise server 15 SP7	3.2.4-150600.3.3.2 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

freeradius

RHEL 9

0:3.0.21-37.el9

fixed

freeradius-devel

RHEL 9

0:3.0.21-37.el9

fixed

freeradius-doc

RHEL 9

0:3.0.21-37.el9

fixed

freeradius-krb5

RHEL 9

0:3.0.21-37.el9

fixed

freeradius-ldap

RHEL 9

0:3.0.21-37.el9

fixed

freeradius-mysql

RHEL 9

0:3.0.21-37.el9

fixed

freeradius-perl

RHEL 9

0:3.0.21-37.el9

fixed

freeradius-postgresql

RHEL 9

0:3.0.21-37.el9

fixed

freeradius-rest

RHEL 9

0:3.0.21-37.el9

fixed

freeradius-sqlite

RHEL 9

0:3.0.21-37.el9

fixed

freeradius-unixODBC

RHEL 9

0:3.0.21-37.el9

fixed

freeradius-utils

RHEL 9

0:3.0.21-37.el9

fixed

python3-freeradius

RHEL 9

0:3.0.21-37.el9

fixed

Common Weakness Enumeration

References

https://freeradius.org/security/

https://github.com/FreeRADIUS/freeradius-server/commit/0ec2b39d260e

https://freeradius.org/security/

https://github.com/FreeRADIUS/freeradius-server/commit/0ec2b39d260e

https://lists.debian.org/debian-lts-announce/2025/06/msg00030.html