Text only | Text with Images

OPNsense Forum

English Forums => General Discussion => Topic started by: sirdvd on July 09, 2024, 05:12:12 PM

Title: BlastRADIUS
Post by: sirdvd on July 09, 2024, 05:12:12 PM
I'm wondering if the FreeRADIUS plugin is vulnerable to CVE-2024-3596?

I'm reading through the faq [https://www.inkbridgenetworks.com/blastradius/faq] but I'm not an expert.
Title: Re: BlastRADIUS
Post by: netnut on July 09, 2024, 09:20:27 PM
https://lists.freeradius.org/pipermail/freeradius-users/2024-July/104505.html

Quote
This vulnerability affects ALL RADIUS clients and ALL RADIUS servers

It's a Radius spec issue, so yes: "ALL RADIUS servers"
Text only | Text with Images