VDB

ALPINE-CVE-2022-41861

ALPINE-CVE-2022-41861 PUBLISHED CVSS 6.5 MEDIUM

A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash.

Risk Scores

CVSS v3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Alpine:v3.15freeradius0, 2.1.10-r1, 2.1.10-r10
Alpine:v3.16freeradius3.0.25-r0, 3.0.25-r1, 3.0.25-r2

Timeline

  • Jan 17, 2023 CVE Published
  • Nov 19, 2025 CVE Updated
  • Apr 30, 2026 Distribution Patch

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›