Known Vulnerabilities for products from Packetfence
Listed below are 5 of the newest known vulnerabilities associated with the vendor "Packetfence".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2012-4742 json | The web_node_register function in web.pm in PacketFence before 3.0.2 might allow remote attackers to execute arbitrary code v... | 7.5 - HIGH | 2012-08-31 | 2012-09-03 |
| CVE-2012-4741 json | The RADIUS extension in PacketFence before 3.3.0 uses a different user name than is used for authentication for users with cu... | 5 - MEDIUM | 2012-08-31 | 2017-08-29 |
| CVE-2012-4740 json | Cross-site scripting (XSS) vulnerability in the captive portal in PacketFence before 3.3.0 allows remote attackers to inject ... | 4.3 - MEDIUM | 2012-08-31 | 2017-08-29 |
| CVE-2011-4069 json | html/admin/login.php in PacketFence before 3.0.2 allows remote attackers to conduct LDAP injection attacks and consequently b... | 9.8 - CRITICAL | 2018-02-01 | 2018-02-21 |
| CVE-2011-4068 json | The check_password function in html/admin/login.php in PacketFence before 3.0.2 allows remote attackers to bypass authenticat... | 9.8 - CRITICAL | 2018-02-01 | 2018-02-21 |
Known software with vulnerabilities from Packetfence
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Packetfence | Packetfence | 1.8.5 |