📦

radius

Vendor: radius_extension_project

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 6.74% Exploit Prob.

Latest CVE CVE-2021-35975 Nov 30

Security Vulnerability Index

Page 1 / 1

5.3 CVSS

CVE-2021-35975

Absolute path traversal vulnerability in the Systematica SMTP Adapter component (up to v2.0.1.101) in Systematica Radius (up to v.3.9.256.777) allows remote attackers to read arbitrary files via a full pathname in GET parameter "file" in URL. Also: affected components in same product - HTTP Adapter (up to v.1.8.0.15), MSSQL MessageBus Proxy (up to v.1.1.06), Financial Calculator (up to v.1.3.05), FIX Adapter (up to v.2.4.0.25)

EPSS: 0.24%

Severity: MEDIUM

Nov 30, 2023

7.5 CVSS

CVE-2013-2220

Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.

EPSS: 2.80%

Severity: HIGH

Jul 31, 2013

10.0 CVSS

CVE-2006-4181

RCE

Format string vulnerability in the sqllog function in the SQL accounting code for radiusd in GNU Radius 1.2 and 1.3 allows remote attackers to execute arbitrary code via unknown vectors.

EPSS: 22.64%

Severity: HIGH

Nov 28, 2006

5.0 CVSS

CVE-2004-0849

Integer overflow in the asn_decode_string() function defined in asn1.c in radiusd for GNU Radius 1.1 and 1.2 before 1.2.94, when compiled with the --enable-snmp option, allows remote attackers to cause a denial of service (daemon crash) via certain SNMP requests.

EPSS: 0.74%

Severity: MEDIUM

Dec 23, 2004

5.0 CVSS

CVE-2004-0576

The radius daemon (radiusd) for GNU Radius 1.1, when compiled with the -enable-snmp option, allows remote attackers to cause a denial of service (server crash) via malformed SNMP messages containing an invalid OID.

EPSS: 0.74%

Severity: MEDIUM

Dec 06, 2004

5.0 CVSS

CVE-2004-0131

The rad_print_request function in logger.c for GNU Radius daemon (radiusd) before 1.2 allows remote attackers to cause a denial of service (crash) via a UDP packet with an Acct-Status-Type attribute without a value and no Acct-Session-Id attribute, which causes a null dereference.

EPSS: 3.54%

Severity: MEDIUM

Mar 03, 2004

5.0 CVSS

CVE-2001-1377

Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers to cause a denial of service (crash) via a Vendor-Length that is less than 2.

EPSS: 13.34%

Severity: MEDIUM

Mar 04, 2002

7.5 CVSS

CVE-2001-1376

Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data.

EPSS: 30.49%

Severity: HIGH

Mar 04, 2002

10.0 CVSS

CVE-2001-0534

Multiple buffer overflows in RADIUS daemon radiusd in (1) Merit 3.6b and (2) Lucent 2.1-2 RADIUS allow remote attackers to cause a denial of service or execute arbitrary commands.

EPSS: 2.06%

Severity: HIGH

Jul 21, 2001

5.0 CVSS

CVE-2001-1082

Directory traversal vulnerability in Livingston/Lucent RADIUS before 2.1.va.1 may allow attackers to read arbitrary files via a .. (dot dot) attack.

EPSS: 1.46%

Severity: MEDIUM

Jul 13, 2001

Displaying 10 of 2 Total Entries

Total 1 Sections