CVE-2013-5143
published 2013-10-24CVE-2013-5143: The RADIUS service in Server App in Apple OS X Server before 3.0 selects a fallback X.509 certificate in unspecified circumstances, which might allow…
medium6.8CVSS 3.1
AVNACMAuNCPIPAP
The RADIUS service in Server App in Apple OS X Server before 3.0 selects a fallback X.509 certificate in unspecified circumstances, which might allow man-in-the-middle attackers to hijack RADIUS sessions by leveraging knowledge of the private key that matches this fallback certificate.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | os_x_server | <= 2.2.2 | — |
| apple | os_x_server | — | — |
| apple | os_x_server | — | — |
| apple | os_x_server | — | — |
| apple | os_x_server | — | — |
| apple | os_x_server | — | — |