This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
Security Fix(es) :
- An authentication bypass flaw was found in the way the
EAP module in FreeRADIUS handled TLS session resumption.
A remote unauthenticated attacker could potentially use
this flaw to bypass the inner authentication check in
FreeRADIUS by resuming an older unauthenticated TLS
See also :
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.5