CVE-2021-32642

Published: May 28, 2021

Modified: Aug 3, 2024

PUBLISHED

CVSS v3.1

7.0

HIGH

Description

radsecproxy is a generic RADIUS proxy that supports both UDP and TLS (RadSec) RADIUS transports. Missing input validation in radsecproxy's `naptr-eduroam.sh` and `radsec-dynsrv.sh` scripts can lead to configuration injection via crafted radsec peer discovery DNS records. Users are subject to Information disclosure, Denial of Service, Redirection of Radius connection to a non-authenticated server leading to non-authenticated network access. Updated example scripts are available in the master branch and 1.9 release. Note that the scripts are not part of the installation package and are not updated automatically. If you are using the examples, you have to update them manually. The dyndisc scripts work independently of the radsecproxy code. The updated scripts can be used with any version of radsecproxy.

Vendor	Product	Versions
radsecproxy	radsecproxy	affected `< 1.9.0`

Weaknesses (CWE)

CWE-20

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

High

References

https://www.usenix.org/conference/usenixsecurity21/presentation/jeitner

x_refsource_MISC

https://github.com/radsecproxy/radsecproxy/security/advisories/GHSA-56gw-9rj9-55rc

x_refsource_CONFIRM

FEDORA-2021-a4be4c93e4

vendor-advisory

x_refsource_FEDORA

FEDORA-2021-d3f8193065

vendor-advisory

x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-32642

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References