RADIUS MD5 Response Authenticator Forgery via Chosen-Prefix Collision
CVE-2024-3596 Published on July 9, 2024

RADIUS Protocol under RFC2865 is vulnerable to forgery attacks.
RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature.

Github Repository Vendor Advisory Vendor Advisory NVD

Vulnerability Analysis

CVE-2024-3596 is exploitable with network access, and does not require authorization privileges or user interaction. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to be critical as this vulnerability has a high impact to the confidentiality, integrity and availability of this component.

Attack Vector:
NETWORK
Attack Complexity:
HIGH
Privileges Required:
NONE
User Interaction:
NONE
Scope:
CHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
HIGH
Availability Impact:
HIGH

Products Associated with CVE-2024-3596

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2024-3596 are published in these products:

Freeradius
 
Broadcom Fabric Operating System
 
Broadcom Brocade Sannav
 
SonicWall Sonicos
 
Oracle
 
Ietf Rfc
 

Affected Versions

IETF RFC: ietf rfc:

Vulnerable Packages

The following package name and versions may be associated with CVE-2024-3596

Package Manager Vulnerable Package Versions Fixed In
pip edumfa < 2.2.0 2.2.0

Exploit Probability

EPSS
24.32%
Percentile
96.01%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.