CVE-2015-4680
FreeRADIUS Insufficient CRL Application
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
FreeRADIUS 2.2.x before 2.2.8 and 3.0.x before 3.0.9 does not properly check revocation of intermediate CA certificates.
FreeRADIUS 2.2.x en versiones anteriores a 2.2.8 y 3.0.x en versiones anteriores a 3.0.9 no comprueba adecuadamente la revocaciĆ³n de certificados CA intermedios.
The FreeRADIUS server relies on OpenSSL to perform certificate validation, including Certificate Revocation List (CRL) checks. The FreeRADIUS usage of OpenSSL, in CRL application, limits the checks to leaf certificates, therefore not detecting revocation of intermediate CA certificates. An unexpired client certificate, issued by an intermediate CA with a revoked certificate, is therefore accepted by FreeRADIUS. Versions equal to and below 2.2.7 and 3.0.8 are affected.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2015-06-19 CVE Reserved
- 2015-06-23 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-295: Improper Certificate Validation
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/archive/1/535810/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/75327 | Third Party Advisory | |
| http://www.securitytracker.com/id/1032690 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://packetstormsecurity.com/files/132415/FreeRADIUS-Insufficient-CRL-Application.html | 2018-10-09 | |
| http://www.ocert.org/advisories/ocert-2015-008.html | 2018-10-09 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1234975 | 2018-10-09 |
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00010.html | 2018-10-09 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 3.0.0 Search vendor "Freeradius" for product "Freeradius" and version "3.0.0" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 3.0.1 Search vendor "Freeradius" for product "Freeradius" and version "3.0.1" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 3.0.2 Search vendor "Freeradius" for product "Freeradius" and version "3.0.2" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 3.0.3 Search vendor "Freeradius" for product "Freeradius" and version "3.0.3" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 3.0.4 Search vendor "Freeradius" for product "Freeradius" and version "3.0.4" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 3.0.5 Search vendor "Freeradius" for product "Freeradius" and version "3.0.5" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 3.0.6 Search vendor "Freeradius" for product "Freeradius" and version "3.0.6" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 3.0.7 Search vendor "Freeradius" for product "Freeradius" and version "3.0.7" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 3.0.8 Search vendor "Freeradius" for product "Freeradius" and version "3.0.8" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 2.2.0 Search vendor "Freeradius" for product "Freeradius" and version "2.2.0" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 2.2.1 Search vendor "Freeradius" for product "Freeradius" and version "2.2.1" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 2.2.2 Search vendor "Freeradius" for product "Freeradius" and version "2.2.2" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 2.2.3 Search vendor "Freeradius" for product "Freeradius" and version "2.2.3" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 2.2.4 Search vendor "Freeradius" for product "Freeradius" and version "2.2.4" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 2.2.5 Search vendor "Freeradius" for product "Freeradius" and version "2.2.5" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 2.2.6 Search vendor "Freeradius" for product "Freeradius" and version "2.2.6" | - |
Affected
| ||||||
| Freeradius Search vendor "Freeradius" | Freeradius Search vendor "Freeradius" for product "Freeradius" | 2.2.7 Search vendor "Freeradius" for product "Freeradius" and version "2.2.7" | - |
Affected
| ||||||
| Suse Search vendor "Suse" | Linux Enterprise Server Search vendor "Suse" for product "Linux Enterprise Server" | 12 Search vendor "Suse" for product "Linux Enterprise Server" and version "12" | sp1 |
Affected
| ||||||
| Suse Search vendor "Suse" | Linux Enterprise Server Search vendor "Suse" for product "Linux Enterprise Server" | 12 Search vendor "Suse" for product "Linux Enterprise Server" and version "12" | sp2 |
Affected
| ||||||
| Suse Search vendor "Suse" | Linux Enterprise Server Search vendor "Suse" for product "Linux Enterprise Server" | 12 Search vendor "Suse" for product "Linux Enterprise Server" and version "12" | sp2, raspberry_pi |
Affected
| ||||||
| Suse Search vendor "Suse" | Linux Enterprise Software Development Kit Search vendor "Suse" for product "Linux Enterprise Software Development Kit" | 12 Search vendor "Suse" for product "Linux Enterprise Software Development Kit" and version "12" | sp1 |
Affected
| ||||||
| Suse Search vendor "Suse" | Linux Enterprise Software Development Kit Search vendor "Suse" for product "Linux Enterprise Software Development Kit" | 12 Search vendor "Suse" for product "Linux Enterprise Software Development Kit" and version "12" | sp2 |
Affected
| ||||||