AVG-281

Package freeradius
Status Fixed
Severity High
Type authentication bypass
Affected 3.0.13-1
Fixed 3.0.14-3
Current 3.0.17-2 [community]
Ticket None
Created Tue May 30 12:15:25 2017
Issue Severity Remote Type Description
CVE-2017-9148 High Yes Authentication bypass
A security issue has been found in FreeRADIUS < 3.0.14. The implementation of TTLS and PEAP in FreeRADIUS skips inner authentication when it handles a...
Date Advisory Package Description
02 Jun 2017 ASA-201706-2 freeradius authentication bypass
References
http://freeradius.org/press/index.html#3.0.14