FreeRADIUS
Security Risk Profile
89
/100
criticalSecurity Risk Score
Comprehensive risk assessment based on 54 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from March 4, 2002 to present
54
Total CVEs
30
Critical+High
1
Exploited
4
Unpatched
Threat Assessment
Avg CVSS
6.7
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
4
Critical/High
Risk Level
89/100
critical
⚠️ 1 Active Exploits
Severity Distribution
Critical
6High
24Medium
21Low
2Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
0Age Distribution
Common Weaknesses (CWE)
1
Buffer Overflow
12
2
Infoleak
2
3
Null Pointer Dereference
2
4
Input Validation
2
5
SQL Injection
2
Most Affected Products
1. FreeRADIUS freeradius463
2. redhat/freeradius16
3. Icradius Icradius14
4. Microsoft Windows 1013
5. Yard Radius Yard Radius12
Recent Vulnerabilities
See more →https://seclists.org/oss-sec/2024/q3/40
unknown
CVE-2024-3596: RADIUS/UDP vulnerable to improved MD5 collision attack
7/9/2024🔧 No Patch
CVE-2024-3596
CVSS 5.3medium
PAN-OS: CHAP and PAP When Used with RADIUS Authentication Lead to Privilege Escalation (Severity: MEDIUM)
2/7/2024⚠ Exploited
CVE-2022-41859
CVSS 7.5high
1/17/2023
CVE-2022-41860
CVSS 7.5high
1/17/2023
CVE-2022-41861
CVSS 6.5medium
1/17/2023
CVE-2019-17185
CVSS 7.5high
3/21/2020
REDHAT-BUG-1737663
CVSS 4.0medium
8/6/2019🔧 No Patch
CVE-2019-13456
CVSS 6.5medium
8/6/2019
CVE-2019-10143
CVSS 7.0high
5/2/2019🔧 No Patch
CVE-2019-11234
CVSS 9.8critical
4/3/2019
Monitor FreeRADIUS in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.