Filtered by vendor Pyrad Project Subscriptions
Filtered by product Pyrad Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2013-0294 2 Fedoraproject, Pyrad Project 2 Fedora, Pyrad 2020-01-31 5.9 Medium
packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote attackers to obtain sensitive information via a brute force attack.
CVE-2013-0342 1 Pyrad Project 1 Pyrad 2019-12-11 4.3 Medium
The CreateID function in packet.py in pyrad before 2.1 uses sequential packet IDs, which makes it easier for remote attackers to spoof packets by predicting the next ID, a different vulnerability than CVE-2013-0294.