Description
RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature.
Published: 2024-07-09
Score: 9 Critical
EPSS: 22.2% Moderate
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Ubuntu USN Ubuntu USN USN-7055-1 FreeRADIUS vulnerability
Ubuntu USN Ubuntu USN USN-7257-1 Kerberos vulnerability
History

Tue, 12 May 2026 12:30:00 +0000

Type Values Removed Values Added
References

Thu, 04 Sep 2025 21:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200
CWE-328

Wed, 03 Sep 2025 17:45:00 +0000

Type Values Removed Values Added
References

Wed, 16 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00774}

 epss

{'score': 0.00888}

Tue, 18 Mar 2025 16:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200
CWE-328

Thu, 13 Feb 2025 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Ietf
Ietf rfc
CPEs cpe:2.3:a:ietf:rfc:2865:*:*:*:*:*:*:*
Vendors & Products Ietf
Ietf rfc
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 13 Feb 2025 00:45:00 +0000

Type Values Removed Values Added
First Time appeared Redhat openshift Ai
CPEs cpe:/a:redhat:openshift_ai:2.16::el8
Vendors & Products Redhat openshift Ai

Mon, 30 Dec 2024 19:45:00 +0000

Type Values Removed Values Added
First Time appeared Broadcom
Broadcom brocade Sannav
Broadcom fabric Operating System
Freeradius
Freeradius freeradius
Sonicwall
Sonicwall sonicos
Weaknesses CWE-354
CPEs cpe:2.3:a:broadcom:brocade_sannav:-:*:*:*:*:*:*:*
cpe:2.3:a:freeradius:freeradius:*:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:-:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:sonicos:-:*:*:*:*:*:*:*
Vendors & Products Broadcom
Broadcom brocade Sannav
Broadcom fabric Operating System
Freeradius
Freeradius freeradius
Sonicwall
Sonicwall sonicos

Thu, 14 Nov 2024 02:30:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:rhel_eus:9.4

Wed, 13 Nov 2024 02:30:00 +0000

Type Values Removed Values Added
CPEs cpe:/o:redhat:enterprise_linux:9

Wed, 06 Nov 2024 02:15:00 +0000

Type Values Removed Values Added
CPEs cpe:/o:redhat:enterprise_linux:8

Tue, 05 Nov 2024 02:45:00 +0000

Type Values Removed Values Added
CPEs cpe:/o:redhat:rhel_aus:8.6
cpe:/o:redhat:rhel_e4s:8.6
cpe:/o:redhat:rhel_eus:8.8
cpe:/o:redhat:rhel_tus:8.6

Mon, 04 Nov 2024 15:00:00 +0000

Type Values Removed Values Added
CPEs cpe:/o:redhat:rhel_aus:8.2
cpe:/o:redhat:rhel_aus:8.4
cpe:/o:redhat:rhel_e4s:8.4
cpe:/o:redhat:rhel_tus:8.4

Thu, 29 Aug 2024 20:30:00 +0000

Type Values Removed Values Added
References

Fri, 23 Aug 2024 08:30:00 +0000

Type Values Removed Values Added
References

Subscriptions

Broadcom Brocade Sannav Fabric Operating System
Freeradius Freeradius
Ietf Rfc
Redhat Enterprise Linux Openshift Ai Rhel Aus Rhel E4s Rhel Els Rhel Eus Rhel Tus
Sonicwall Sonicos
cve-icon MITRE

Status: PUBLISHED

Assigner: certcc

Published:

Updated: 2026-05-12T11:30:39.787Z

Reserved: 2024-04-10T15:09:45.391Z

Link: CVE-2024-3596

cve-icon Vulnrichment

Updated: 2025-11-04T17:20:52.225Z

cve-icon NVD

Status : Modified

Published: 2024-07-09T12:15:20.700

Modified: 2026-05-12T12:16:57.943

Link: CVE-2024-3596

cve-icon Redhat

Severity : Important

Publid Date: 2024-07-09T00:00:00Z

Links: CVE-2024-3596 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses