CVSS: 5.3EPSS: 0%CPEs: 6EXPL: 1CVE-2021-35975
https://notcve.org/view.php?id=CVE-2021-35975
30 Nov 2023 — Absolute path traversal vulnerability in the Systematica SMTP Adapter component (up to v2.0.1.101) in Systematica Radius (up to v.3.9.256.777) allows remote attackers to read arbitrary files via a full pathname in GET parameter "file" in URL. Also: affected components in same product - HTTP Adapter (up to v.1.8.0.15), MSSQL MessageBus Proxy (up to v.1.1.06), Financial Calculator (up to v.1.3.05), FIX Adapter (up to v.2.4.0.25) Vulnerabilidad de path traversal absoluto en el componente Systematica SMTP Adapt... • https://github.com/fbkcs/CVE-2021-35975 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 29%CPEs: 40EXPL: 0CVE-2001-1376
https://notcve.org/view.php?id=CVE-2001-1376
04 Mar 2002 — Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data. • http://archives.neohapsis.com/archives/linux/suse/2002-q2/0362.html •
CVSS: 7.5EPSS: 10%CPEs: 40EXPL: 0CVE-2001-1377
https://notcve.org/view.php?id=CVE-2001-1377
04 Mar 2002 — Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers to cause a denial of service (crash) via a Vendor-Length that is less than 2. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:02.asc •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2001-1082
https://notcve.org/view.php?id=CVE-2001-1082
13 Jul 2001 — Directory traversal vulnerability in Livingston/Lucent RADIUS before 2.1.va.1 may allow attackers to read arbitrary files via a .. (dot dot) attack. • http://freshmeat.net/releases/52020 •
CVSS: 8.4EPSS: 2%CPEs: 2EXPL: 0CVE-2001-1081
https://notcve.org/view.php?id=CVE-2001-1081
06 Jul 2001 — Format string vulnerabilities in Livingston/Lucent RADIUS before 2.1.va.1 may allow local or remote attackers to cause a denial of service and possibly execute arbitrary code via format specifiers that are injected into log messages. • http://archives.neohapsis.com/archives/apps/freshmeat/2001-07/0009.html •