Yard Radius Project Yard Radius — known CVE vulnerabilities
Every CVE whose affected-product data names Yard Radius Project Yard Radius, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2004-0987 — CVSS 10.0 (critical): Buffer overflow in the process_menu function in yardradius 1.0.20 allows remote attackers to execute arbitrary code.
CVE-2001-1376 — CVSS 7.5 (high): Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and…
CVE-2013-4147 — CVSS 7.5 (high): Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow context-dependent attackers to cause a denial…
CVE-2001-1377 — CVSS 5.0 (medium): Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers…