CVE-2015-4680
published 2017-04-05CVE-2015-4680: FreeRADIUS 2.2.x before 2.2.8 and 3.0.x before 3.0.9 does not properly check revocation of intermediate CA certificates.
high7.5CVSS 3.0
AVNACLPRNUINSUCNIHAN
FreeRADIUS 2.2.x before 2.2.8 and 3.0.x before 3.0.9 does not properly check revocation of intermediate CA certificates.
Affected
24 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | freeradius | < freeradius 2.2.8+dfsg-0.1 (bookworm) | freeradius 2.2.8+dfsg-0.1 (bookworm) |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | — | — |
| freeradius | freeradius | >= 0 < 2.2.8+dfsg-0.1 | 2.2.8+dfsg-0.1 |
| freeradius | freeradius | >= 0 < 2.2.8+dfsg-0.1 | 2.2.8+dfsg-0.1 |
| freeradius | freeradius | >= 0 < 2.2.8+dfsg-0.1 | 2.2.8+dfsg-0.1 |
| freeradius | freeradius | >= 0 < 2.2.8+dfsg-0.1 | 2.2.8+dfsg-0.1 |
| suse | linux_enterprise_server | — | — |
| suse | linux_enterprise_software_development_kit | — | — |
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
osv7.5HIGH