High severity7.5NVD Advisory· Published Apr 5, 2017· Updated May 13, 2026
CVE-2015-4680
CVE-2015-4680
Description
FreeRADIUS 2.2.x before 2.2.8 and 3.0.x before 3.0.9 does not properly check revocation of intermediate CA certificates.
Affected products
22cpe:2.3:a:freeradius:freeradius:2.2.0:*:*:*:*:*:*:*+ 16 more
- cpe:2.3:a:freeradius:freeradius:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:2.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:3.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:3.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:3.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:3.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:3.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:freeradius:freeradius:3.0.8:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:12:sp1:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:suse:linux_enterprise_server:12:sp1:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:12:sp2:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:12:sp2:*:*:*:*:raspberry_pi:*
cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:sp1:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:sp1:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:sp2:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- packetstormsecurity.com/files/132415/FreeRADIUS-Insufficient-CRL-Application.htmlnvdPatchThird Party AdvisoryVDB Entry
- www.ocert.org/advisories/ocert-2015-008.htmlnvdPatchThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatch
- lists.opensuse.org/opensuse-security-announce/2017-01/msg00010.htmlnvdThird Party Advisory
- www.securityfocus.com/bid/75327nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1032690nvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/535810/100/0/threadednvd
News mentions
0No linked articles in our index yet.