Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how freeradius compares to other vendors in security performance

View Risk Score →

CVE-2024-3596: RADIUS/UDP vulnerable to improved MD5 collision attack

First published (updated )
https://seclists.org/oss-sec/2024/q3/40

Microsoft Windows 10PAN-OS: CHAP and PAP When Used with RADIUS Authentication Lead to Privilege Escalation (Severity: MEDIUM)

Risk 96
Severity
5.3
Exploited
First published (updated )
CVE-2024-3596

FreeRADIUS freeradiusInfoleak

Risk 43
Severity
7.5
First published (updated )
CVE-2022-41859

FreeRADIUS freeradiusNull Pointer Dereference

Risk 43
Severity
7.5
First published (updated )
CVE-2022-41860

FreeRADIUS freeradiusInput Validation

Risk 38
Severity
6.5
First published (updated )
CVE-2022-41861
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/freeradius-serverIn FreeRADIUS 3.0.x before 3.0.20, the EAP-pwd module used a global OpenSSL BN_CTX instance to handl…

Risk 43
Severity
7.5
First published (updated )
CVE-2019-17185

FreeRADIUS freeradiusA flaw was found in the implementation of EAP-pwd in FreeRADIUS. An attacker could initiate several …

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-1737663

redhat Enterprise LinuxA flaw was found in the implementation of EAP-pwd in FreeRADIUS. An attacker could initiate several …

Risk 38
Severity
6.5
First published (updated )
CVE-2019-13456

Fedoraproject FedoraRace Condition

Risk 63
Severity
7
First published (updated )
CVE-2019-10143

Canonical Ubuntu LinuxLast updated 25 August 2025

Risk 86
Severity
9.8
First published (updated )
CVE-2019-11234
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Canonical Ubuntu LinuxLast updated 25 August 2025

Risk 86
Severity
9.8
First published (updated )
CVE-2019-11235

Canonical Ubuntu LinuxBuffer Overflow

Risk 46
Severity
7.5
First published (updated )
CVE-2015-9542

FreeRADIUS freeradiusAn FR-GV-304 issue in FreeRADIUS 3.x before 3.0.15 allows "DHCP - Buffer over-read in fr_dhcp_decode…

Risk 43
Severity
7.5
First published (updated )
CVE-2017-10987

FreeRADIUS freeradiusAn FR-GV-303 issue in FreeRADIUS 3.x before 3.0.15 allows "DHCP - Infinite read in dhcp_attr2vp()" a…

Risk 43
Severity
7.5
First published (updated )
CVE-2017-10986

FreeRADIUS freeradiusAn FR-GV-302 issue in FreeRADIUS 3.x before 3.0.15 allows "Infinite loop and memory exhaustion with …

Risk 44
Severity
7.8
First published (updated )
CVE-2017-10985
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

FreeRADIUS freeradiusAn FR-GV-301 issue in FreeRADIUS 3.x before 3.0.15 allows "Write overflow in data2vp_wimax()" - this…

Risk 86
Severity
9.8
First published (updated )
CVE-2017-10984

FreeRADIUS freeradiusBuffer Overflow

Risk 43
Severity
7.5
First published (updated )
CVE-2017-10983

FreeRADIUS freeradiusAn FR-GV-205 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Buffer over-read in fr_dhcp_decode…

Risk 43
Severity
7.5
First published (updated )
CVE-2017-10982

FreeRADIUS freeradiusAn FR-GV-204 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Memory leak in fr_dhcp_decode()" a…

Risk 43
Severity
7.5
First published (updated )
CVE-2017-10981

FreeRADIUS freeradiusAn FR-GV-203 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Memory leak in decode_tlv()" and a…

Risk 43
Severity
7.5
First published (updated )
CVE-2017-10980
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

FreeRADIUS freeradiusAn FR-GV-202 issue in FreeRADIUS 2.x before 2.2.10 allows "Write overflow in rad_coalesce()" - this …

Risk 86
Severity
9.8
First published (updated )
CVE-2017-10979

redhat Enterprise Linux Server EusBuffer Overflow

Risk 43
Severity
7.5
First published (updated )
CVE-2017-10978

FreeRADIUS freeradiusThe TLS session cache in FreeRADIUS 2.1.1 through 2.1.7, 3.0.x before 3.0.14, 3.1.x before 2017-02-0…

Risk 87
Severity
9.8
First published (updated )
CVE-2017-9148

FreeRADIUS freeradiusThe EAP-PWD module in FreeRADIUS 3.0 through 3.0.8 allows remote attackers to have unspecified impac…

Risk 75
Severity
8.1
First published (updated )
CVE-2015-8763

FreeRADIUS freeradiusBuffer Overflow

Risk 75
Severity
8.1
First published (updated )
CVE-2015-8764
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

FreeRADIUS freeradiusNull Pointer Dereference

Risk 35
Severity
5.9
First published (updated )
CVE-2015-8762

FreeRADIUS freeradiusFreeRADIUS 2.2.x before 2.2.8 and 3.0.x before 3.0.9 does not properly check revocation of intermedi…

Risk 45
Severity
7.5
First published (updated )
CVE-2015-4680

FreeRADIUS freeradiusBuffer Overflow

Risk 53
Severity
7.5
First published (updated )
CVE-2014-2015

FreeRADIUS freeradiusBuffer Overflow

Risk 18
Severity
4
First published (updated )
REDHAT-BUG-1066761

FreeRADIUS freeradiusmodules/rlm_unix/rlm_unix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentic…

Risk 41
Severity
6
First published (updated )
CVE-2011-4966
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203