What is the severity of REDHAT-BUG-1737663?

The severity of REDHAT-BUG-1737663 is considered significant due to the potential for leakage of sensitive user information.

How do I fix REDHAT-BUG-1737663?

To fix REDHAT-BUG-1737663, ensure that you update to the latest version of FreeRADIUS that includes security patches addressing this vulnerability.

What causes REDHAT-BUG-1737663?

REDHAT-BUG-1737663 is caused by a flaw in the implementation of EAP-pwd in the FreeRADIUS software, allowing attackers to initiate multiple handshakes.

Who is affected by REDHAT-BUG-1737663?

Users of FreeRADIUS who utilize EAP-pwd for authentication may be affected by REDHAT-BUG-1737663.

What are the potential consequences of REDHAT-BUG-1737663?

The potential consequences of REDHAT-BUG-1737663 include unauthorized recovery of WiFi passwords through information leakage and subsequent brute-force attacks.

Vulnerability/
REDHAT-BUG-1737663

medium

6/8/2019

16/2/2021

REDHAT-BUG-1737663

First published: Tue Aug 06 2019(Updated: )

A flaw was found in the implementation of EAP-pwd in FreeRADIUS. An attacker could initiate several EAP-pwd handshakes to leak information, which can then be used to recover the user's WiFi password by performing dictionary and brute-force attacks. References: <a href="https://wpa3.mathyvanhoef.com/#new">https://wpa3.mathyvanhoef.com/#new</a>

Affected Software	Affected Version	How to fix
FreeRADIUS FreeRADIUS

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-1737663?
The severity of REDHAT-BUG-1737663 is considered significant due to the potential for leakage of sensitive user information.
How do I fix REDHAT-BUG-1737663?
To fix REDHAT-BUG-1737663, ensure that you update to the latest version of FreeRADIUS that includes security patches addressing this vulnerability.
What causes REDHAT-BUG-1737663?
REDHAT-BUG-1737663 is caused by a flaw in the implementation of EAP-pwd in the FreeRADIUS software, allowing attackers to initiate multiple handshakes.
Who is affected by REDHAT-BUG-1737663?
Users of FreeRADIUS who utilize EAP-pwd for authentication may be affected by REDHAT-BUG-1737663.
What are the potential consequences of REDHAT-BUG-1737663?
The potential consequences of REDHAT-BUG-1737663 include unauthorized recovery of WiFi passwords through information leakage and subsequent brute-force attacks.

agent/last-modified-date
agent/first-publish-date
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2019-13456
agent/type
agent/severity
agent/references
agent/description
agent/event
agent/source
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/freeradius
canonical/freeradius freeradius

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.