CVE-2017-9148 in FreeRADIUSinfo

Zusammenfassung

von MITRE

The TLS session cache in FreeRADIUS before 3.0.14 fails to reliably prevent resumption of an unauthenticated session, which allows remote attackers (such as malicious 802.1X supplicants) to bypass authentication via PEAP or TTLS.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

22.05.2017

Veröffentlichung

29.05.2017

Moderieren

akzeptiert

Eintrag

VDB-101841

CPE

bereit

CWE

CWE-287 (bestätigt)

CVSS

9.8 (NVD)

EPSS

0.03914

KEV

nein

Aktivitäten

very low

Sektor

Hostingprovider, Telecommunication, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-9148
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-9148
CVE Details	https://www.cvedetails.com/cve/CVE-2017-9148/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!