CVE-2024-3596
09.07.2024, 12:15
RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature.Enginsight
| Vendor | Product | Version |
|---|---|---|
| freeradius | freeradius | 𝑥 < 3.0.27 |
| broadcom | brocade_sannav | - |
| broadcom | fabric_operating_system | - |
| sonicwall | sonicos | - |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| freeradius |
| ||||||||||||||||
| krb5 |
| ||||||||||||||||
| libpam-radius-auth |
|
Common Weakness Enumeration
- CWE-354 - Improper Validation of Integrity Check ValueThe software does not validate or incorrectly validates the integrity check values or "checksums" of a message. This may prevent it from detecting if the data has been modified or corrupted in transmission.
- CWE-200 - Exposure of Sensitive Information to an Unauthorized ActorThe product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
References