vulnerability

Debian: CVE-2013-0294: pyrad -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:P/I:N/A:N)	Jan 28, 2020	Jul 30, 2024	Mar 30, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:N)

Published

Jan 28, 2020

Added

Jul 30, 2024

Modified

Mar 30, 2026

Description

packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote attackers to obtain sensitive information via a brute force attack.

Solution

debian-upgrade-pyrad

References

CVE-2013-0294
https://attackerkb.com/topics/CVE-2013-0294
CWE-330
EUVD-EUVD-2020-0156
https://euvd.enisa.europa.eu/vulnerability/EUVD-2020-0156

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today