Packetfence » Packetfence : Security Vulnerabilities, CVEs, Published In 2012 CVSS score >= 5
The web_node_register function in web.pm in PacketFence before 3.0.2 might allow remote attackers to execute arbitrary code via unspecified vectors.
Max CVSS
7.5
EPSS Score
0.62%
Published
2012-08-31
Updated
2012-09-03
The RADIUS extension in PacketFence before 3.3.0 uses a different user name than is used for authentication for users with custom VLAN assignment extensions, which allows remote attackers to spoof user identities via the User-Name RADIUS attribute.
Max CVSS
5.0
EPSS Score
0.36%
Published
2012-08-31
Updated
2017-08-29
2 vulnerabilities found