CVE-2022-41860

Published: Jan 17, 2023Modified: Nov 3, 2025

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

In freeradius, when an EAP-SIM supplicant sends an unknown SIM option, the server will try to look that option up in the internal dictionaries. This lookup will fail, but the SIM code will not check for that failure. Instead, it will dereference a NULL pointer, and cause the server to crash.

Affected (1)

Products: Freeradius: Freeradius

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Freeradius Freeradius	From 0.9.3 to 3.0.25

Related CWEs

NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

References (5)

https://freeradius.org/security/

Source: secalert@redhat.com

PatchVendor Advisory

https://github.com/FreeRADIUS/freeradius-server/commit/f1cdbb33ec61c4a64a

Source: secalert@redhat.com

PatchThird Party Advisory

https://freeradius.org/security/

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://github.com/FreeRADIUS/freeradius-server/commit/f1cdbb33ec61c4a64a

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://lists.debian.org/debian-lts-announce/2025/06/msg00030.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.