{"dataType": "CVE_RECORD", "cveMetadata": {"cveId": "CVE-2024-3596", "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "state": "PUBLISHED", "assignerShortName": "certcc", "dateReserved": "2024-04-10T15:09:45.391Z", "datePublished": "2024-07-09T12:02:53.001Z", "dateUpdated": "2024-08-29T14:32:14.851Z"}, "containers": {"cna": {"title": "RADIUS Protocol under RFC2865 is vulnerable to forgery attacks.", "descriptions": [{"lang": "en", "value": "RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature."}], "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Thanks to Sharon Goldberg, Miro Haller, Nadia Heninger, Mike Milano, Dan Shumow, Marc Stevens, and Adam Suhl who researched and reported this vulnerability"}], "affected": [{"vendor": "IETF", "product": "RFC", "versions": [{"status": "affected", "version": "2865"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-328: Use of Weak Hash"}]}, {"descriptions": [{"lang": "en", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor"}]}, {"descriptions": [{"lang": "en", "description": "CWE-924 Improper Enforcement of Message Integrity During Transmission in a Communication Channel"}]}], "references": [{"url": "https://datatracker.ietf.org/doc/html/rfc2865"}, {"url": "https://datatracker.ietf.org/doc/draft-ietf-radext-deprecating-radius/"}, {"url": "https://networkradius.com/assets/pdf/radius_and_md5_collisions.pdf"}, {"url": "https://www.blastradius.fail/"}, {"url": "http://www.openwall.com/lists/oss-security/2024/07/09/4"}, {"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0014"}], "x_generator": {"engine": "VINCE 3.0.4", "env": "prod", "origin": "https://cveawg.mitre.org/api/cve/CVE-2024-3596"}, "providerMetadata": {"orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc", "dateUpdated": "2024-07-09T14:08:23.145Z"}}, "adp": [{"affected": [{"vendor": "ietf", "product": "rfc", "cpes": ["cpe:2.3:a:ietf:rfc:2865:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "2865", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-07-11T03:55:37.141738Z", "id": "CVE-2024-3596", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-24T20:18:28.202Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-29T14:32:14.851Z"}, "references": [{"url": "https://security.netapp.com/advisory/ntap-20240822-0001/"}, {"url": "https://today.ucsd.edu/story/computer-scientists-discover-vulnerabilities-in-a-popular-security-protocol"}, {"tags": ["x_transferred"], "url": "https://datatracker.ietf.org/doc/html/rfc2865"}, {"tags": ["x_transferred"], "url": "https://datatracker.ietf.org/doc/draft-ietf-radext-deprecating-radius/"}, {"tags": ["x_transferred"], "url": "https://networkradius.com/assets/pdf/radius_and_md5_collisions.pdf"}, {"tags": ["x_transferred"], "url": "https://www.blastradius.fail/"}, {"tags": ["x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2024/07/09/4"}, {"tags": ["x_transferred"], "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0014"}], "title": "CVE Program Container", "x_generator": {"engine": "ADPogram 0.0.1"}}]}, "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://security.netapp.com/advisory/ntap-20240822-0001/"}, {"url": "https://today.ucsd.edu/story/computer-scientists-discover-vulnerabilities-in-a-popular-security-protocol"}, {"url": "https://datatracker.ietf.org/doc/html/rfc2865", "tags": ["x_transferred"]}, {"url": "https://datatracker.ietf.org/doc/draft-ietf-radext-deprecating-radius/", "tags": ["x_transferred"]}, {"url": "https://networkradius.com/assets/pdf/radius_and_md5_collisions.pdf", "tags": ["x_transferred"]}, {"url": "https://www.blastradius.fail/", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2024/07/09/4", "tags": ["x_transferred"]}, {"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0014", "tags": ["x_transferred"]}], "x_generator": {"engine": "ADPogram 0.0.1"}, "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-29T14:32:14.851Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-3596", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-07-11T03:55:37.141738Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:ietf:rfc:2865:*:*:*:*:*:*:*"], "vendor": "ietf", "product": "rfc", "versions": [{"status": "affected", "version": "2865"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-24T20:18:02.244Z"}}], "cna": {"title": "RADIUS Protocol under RFC2865 is vulnerable to forgery attacks.", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Thanks to Sharon Goldberg, Miro Haller, Nadia Heninger, Mike Milano, Dan Shumow, Marc Stevens, and Adam Suhl who researched and reported this vulnerability"}], "affected": [{"vendor": "IETF", "product": "RFC", "versions": [{"status": "affected", "version": "2865"}]}], "references": [{"url": "https://datatracker.ietf.org/doc/html/rfc2865"}, {"url": "https://datatracker.ietf.org/doc/draft-ietf-radext-deprecating-radius/"}, {"url": "https://networkradius.com/assets/pdf/radius_and_md5_collisions.pdf"}, {"url": "https://www.blastradius.fail/"}, {"url": "http://www.openwall.com/lists/oss-security/2024/07/09/4"}, {"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0014"}], "x_generator": {"env": "prod", "engine": "VINCE 3.0.4", "origin": "https://cveawg.mitre.org/api/cve/CVE-2024-3596"}, "descriptions": [{"lang": "en", "value": "RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-328: Use of Weak Hash"}]}, {"descriptions": [{"lang": "en", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor"}]}, {"descriptions": [{"lang": "en", "description": "CWE-924 Improper Enforcement of Message Integrity During Transmission in a Communication Channel"}]}], "providerMetadata": {"orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc", "dateUpdated": "2024-07-09T14:08:23.145Z"}}}, "cveMetadata": {"cveId": "CVE-2024-3596", "state": "PUBLISHED", "dateUpdated": "2024-08-29T14:32:14.851Z", "dateReserved": "2024-04-10T15:09:45.391Z", "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "datePublished": "2024-07-09T12:02:53.001Z", "assignerShortName": "certcc"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature."}, {"lang": "es", "value": "El protocolo RADIUS seg\u00fan RFC 2865 es susceptible a ataques de falsificaci\u00f3n por parte de un atacante local que puede modificar cualquier respuesta v\u00e1lida (acceso-aceptaci\u00f3n, acceso-rechazo o acceso-desaf\u00edo) a cualquier otra respuesta utilizando un ataque de colisi\u00f3n de prefijo elegido contra la firma del autenticador de respuesta MD5. ."}], "id": "CVE-2024-3596", "lastModified": "2024-07-23T09:15:02.697", "metrics": {}, "published": "2024-07-09T12:15:20.700", "references": [{"source": "cret@cert.org", "url": "http://www.openwall.com/lists/oss-security/2024/07/09/4"}, {"source": "cret@cert.org", "url": "https://datatracker.ietf.org/doc/draft-ietf-radext-deprecating-radius/"}, {"source": "cret@cert.org", "url": "https://datatracker.ietf.org/doc/html/rfc2865"}, {"source": "cret@cert.org", "url": "https://networkradius.com/assets/pdf/radius_and_md5_collisions.pdf"}, {"source": "cret@cert.org", "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0014"}, {"source": "cret@cert.org", "url": "https://www.blastradius.fail/"}], "sourceIdentifier": "cret@cert.org", "vulnStatus": "Awaiting Analysis"}

{"affected_release": [{"advisory": "RHSA-2024:4911", "cpe": "cpe:/o:redhat:rhel_els:7", "package": "freeradius-0:3.0.20-1.el7_9.1", "product_name": "Red Hat Enterprise Linux 7 Extended Lifecycle Support", "release_date": "2024-07-30T00:00:00Z"}, {"advisory": "RHSA-2024:4936", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "freeradius:3.0-8100020230904084920.69ef70f8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2024-07-31T00:00:00Z"}, {"advisory": "RHSA-2024:4913", "cpe": "cpe:/a:redhat:rhel_aus:8.2", "package": "freeradius:3.0-8020020240726095340.ce27ea5e", "product_name": "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date": "2024-07-30T00:00:00Z"}, {"advisory": "RHSA-2024:4874", "cpe": "cpe:/a:redhat:rhel_aus:8.4", "package": "freeradius:3.0-8040020240719063921.9ab73fbf", "product_name": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date": "2024-07-25T00:00:00Z"}, {"advisory": "RHSA-2024:4874", "cpe": "cpe:/a:redhat:rhel_tus:8.4", "package": "freeradius:3.0-8040020240719063921.9ab73fbf", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2024-07-25T00:00:00Z"}, {"advisory": "RHSA-2024:4874", "cpe": "cpe:/a:redhat:rhel_e4s:8.4", "package": "freeradius:3.0-8040020240719063921.9ab73fbf", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2024-07-25T00:00:00Z"}, {"advisory": "RHSA-2024:4826", "cpe": "cpe:/a:redhat:rhel_aus:8.6", "package": "freeradius:3.0-8060020240719034751.830b6f11", "product_name": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support", "release_date": "2024-07-24T00:00:00Z"}, {"advisory": "RHSA-2024:4826", "cpe": "cpe:/a:redhat:rhel_tus:8.6", "package": "freeradius:3.0-8060020240719034751.830b6f11", "product_name": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service", "release_date": "2024-07-24T00:00:00Z"}, {"advisory": "RHSA-2024:4826", "cpe": "cpe:/a:redhat:rhel_e4s:8.6", "package": "freeradius:3.0-8060020240719034751.830b6f11", "product_name": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions", "release_date": "2024-07-24T00:00:00Z"}, {"advisory": "RHSA-2024:4829", "cpe": "cpe:/a:redhat:rhel_eus:8.8", "package": "freeradius:3.0-8080020240719112231.b012cf7d", "product_name": "Red Hat Enterprise Linux 8.8 Extended Update Support", "release_date": "2024-07-24T00:00:00Z"}, {"advisory": "RHSA-2024:4935", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "freeradius-0:3.0.21-40.el9_4", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2024-07-31T00:00:00Z"}, {"advisory": "RHSA-2024:4912", "cpe": "cpe:/a:redhat:rhel_e4s:9.0", "package": "freeradius-0:3.0.21-26.el9_0.1", "product_name": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions", "release_date": "2024-07-30T00:00:00Z"}, {"advisory": "RHSA-2024:4828", "cpe": "cpe:/a:redhat:rhel_eus:9.2", "package": "freeradius-0:3.0.21-38.el9_2.2", "product_name": "Red Hat Enterprise Linux 9.2 Extended Update Support", "release_date": "2024-07-24T00:00:00Z"}], "bugzilla": {"description": "freeradius: forgery attack", "id": "2263240", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263240"}, "csaw": false, "cvss3": {"cvss3_base_score": "9.0", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", "status": "verified"}, "cwe": "CWE-294->CWE-836->CWE-924", "details": ["RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature.", "A vulnerability in the RADIUS (Remote Authentication Dial-In User Service) protocol allows attackers to forge authentication responses when the Message-Authenticator attribute is not enforced. This issue arises from a cryptographically insecure integrity check using MD5, enabling attackers to spoof UDP-based RADIUS response packets. This can result in unauthorized access by modifying an Access-Reject response to an Access-Accept response, thereby compromising the authentication process."], "mitigation": {"lang": "en:us", "value": "Disable the use of RADIUS/UDP and RADIUS/TCP.\nRADIUS/TLS or RADIUS/DTLS should be used."}, "name": "CVE-2024-3596", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "freeradius", "product_name": "Red Hat Enterprise Linux 6"}], "public_date": "2024-07-09T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-3596\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-3596\nhttps://datatracker.ietf.org/doc/draft-ietf-radext-deprecating-radius/\nhttps://datatracker.ietf.org/doc/html/rfc2865\nhttps://networkradius.com/assets/pdf/radius_and_md5_collisions.pdf\nhttps://w1.fi/security/2024-1/hostapd-and-radius-protocol-forgery-attacks.txt\nhttps://www.blastradius.fail/\nhttps://www.kb.cert.org/vuls/id/456537"], "statement": "This vulnerability is of Important severity due to its ability to undermine the fundamental security mechanisms of RADIUS-based authentication systems. By exploiting the weak MD5 integrity check, an attacker can forge RADIUS responses, effectively bypassing authentication controls and gaining unauthorized access to network resources. This poses a significant threat to environments relying on RADIUS for user and device authentication, particularly those lacking enforced Message-Authenticator attributes or TLS/DTLS encryption.\nThere are several preconditions for this attack to be possible:\n* An attacker needs man-in-the-middle network access between the RADIUS client and server\n* The client and server must be using RADIUS/UDP to communicate\n* The attacker needs to be able to trigger a RADIUS client Access-Request ( for example the client is using PAP authentication)\nDue to these attack surface limitations, the impact is rated Important.\nWithin Red Hat offerings, this impacts the FreeRADIUS package. This flaw allows a local, unauthenticated attacker to conduct a man-in-the-middle attack to log in as a third party without knowing their credentials. Servers using Extensible Authentication Protocol (EAP) with required Message-Authenticator attributes or those employing TLS/DTLS encryption are not affected.", "threat_severity": "Important"}