Acknowledged
Created: Jul 9, 2024
Updated: Jan 2, 2025
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace
RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature.
CREATE(Triage):(User=admin) CVE-2024-3596 (https://nvd.nist.gov/vuln/detail/CVE-2024-3596)
