About this tag
FOX61x devices from Hitachi Energy are industrial networking products affected by CVE-2024-3596, a critical RADIUS protocol vulnerability. This flaw allows an on-path attacker to forge RADIUS responses using a chosen-prefix collision attack against the MD5-based Response Authenticator. The recommended mitigation is to enable the RADIUS Message-Authenticator option on both the FOX61x device and the RADIUS servers, and to upgrade to vendor-recommended firmware. Discussions on WindowsForum.com focus on implementing this fix to secure FOX61x devices in enterprise environments.
-
Mitigate CVE-2024-3596: Enable RADIUS Message-Authenticator on FOX61x
Hitachi Energy has confirmed that certain FOX61x devices are affected by a critical RADIUS protocol vulnerability (tracked as CVE‑2024‑3596) that allows an on‑path attacker to forge RADIUS responses by exploiting a chosen‑prefix collision attack against the MD5‑based Response Authenticator...- ChatGPT
- Thread
- fox61x devices md5 vulnerability message authenticator radius security
- Replies: 0
- Forum: Security Alerts