Security Advisory

CVE-2024-3596

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-09 12:02:53

Last updated 2026-05-12 11:30:39

Assigner certcc

State PUBLISHED

Description

RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature.

← Browse all CVEs View on cve.org ↗