Lucene search
GoogleOSV:PYSEC-2020-211HistoryJan 28, 2020 - 4:15 p.m.
PYSEC-2020-211
2020-01-2816:15:00
Google
osv.dev
8
EPSS
0.007
Percentile
79.6%
packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote attackers to obtain sensitive information via a brute force attack.
References
lists.fedoraproject.org/pipermail/package-announce/2013-September/115677.html
lists.fedoraproject.org/pipermail/package-announce/2013-September/115705.html
lists.fedoraproject.org/pipermail/package-announce/2013-September/116567.html
www.openwall.com/lists/oss-security/2013/02/15/13
www.securityfocus.com/bid/57984
bugzilla.redhat.com/show_bug.cgi?id=911682
exchange.xforce.ibmcloud.com/vulnerabilities/82133
github.com/wichert/pyrad/commit/38f74b36814ca5b1a27d9898141126af4953bee5
Related
openvas
openvas
Fedora Update for python-pyrad FEDORA-2013-15891
2013-09-18 00:00:00
Fedora Update for python-pyrad FEDORA-2013-15877
2013-09-18 00:00:00
Fedora Update for python-pyrad FEDORA-2013-15891
2013-09-18 00:00:00
osv
osv
pyrad is vulnerable to the use of Insufficiently Random Values
2022-05-05 00:29:22
PYSEC-2019-154
2019-12-09 21:15:00
github
github
pyrad is vulnerable to the use of Insufficiently Random Values
2022-05-05 00:29:22
pyrad uses sequential packet IDs
2022-05-05 00:29:09
fedora
fedora
[SECURITY] Fedora 19 Update: python-pyrad-2.0-3.fc19
2013-09-15 00:49:58
[SECURITY] Fedora 20 Update: python-pyrad-2.0-3.fc20
2013-09-23 00:40:35
[SECURITY] Fedora 18 Update: python-pyrad-2.0-3.fc18
2013-09-15 00:57:16
debiancve
debiancve
CVE-2013-0294
2020-01-28 16:15:11
CVE-2013-0342
2019-12-09 21:15:10
nessus
nessus
Fedora 18 : python-pyrad-2.0-3.fc18 (2013-15877)
2013-09-15 00:00:00
Fedora 19 : python-pyrad-2.0-3.fc19 (2013-15891)
2013-09-15 00:00:00
Fedora 20 : python-pyrad-2.0-3.fc20 (2013-15838)
2013-09-23 00:00:00
prion
prion
Information disclosure
2020-01-28 16:15:00
Security feature bypass
2019-12-09 21:15:00
cve
cve
CVE-2013-0294
2020-01-28 16:15:11
CVE-2013-0342
2019-12-09 21:15:10
ubuntucve
ubuntucve
CVE-2013-0294
2020-01-28 00:00:00
CVE-2013-0342
2019-12-09 00:00:00
cvelist
cvelist
CVE-2013-0294
2020-01-28 15:53:24
CVE-2013-0342
2019-12-09 20:55:36
nvd
nvd
CVE-2013-0294
2020-01-28 16:15:11
CVE-2013-0342
2019-12-09 21:15:10
freebsd
freebsd
pyrad -- multiple vulnerabilities
2013-01-15 00:00:00