Vulnerability Description
Variable underflow exists in accel-ppp radius/packet.c when receiving a RADIUS vendor-specific attribute with length field is less than 2. It has an impact only when the attacker controls the RADIUS server, which can lead to arbitrary code execution.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Accel-Ppp | Accel-Ppp | < 1.12.0-e9d369a |
Related Weaknesses (CWE)
References
- https://github.com/accel-ppp/accel-ppp/commit/e9d369aa0054312b7633e964e9f7eb323fPatchThird Party Advisory
- https://github.com/accel-ppp/accel-ppp/security/advisories/GHSA-2m44-rh3c-x4grPatchThird Party Advisory
- https://github.com/accel-ppp/accel-ppp/commit/e9d369aa0054312b7633e964e9f7eb323fPatchThird Party Advisory
- https://github.com/accel-ppp/accel-ppp/security/advisories/GHSA-2m44-rh3c-x4grPatchThird Party Advisory
FAQ
What is CVE-2020-28194?
CVE-2020-28194 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Variable underflow exists in accel-ppp radius/packet.c when receiving a RADIUS vendor-specific attribute with length field is less than 2. It has an impact only when the attacker controls the RADIUS s...
How severe is CVE-2020-28194?
CVE-2020-28194 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2020-28194?
Check the references section above for vendor advisories and patch information. Affected products include: Accel-Ppp Accel-Ppp.