CVE-2010-2628

🗓️ 20 Aug 2010 17:00:00Reported by mitreType

The IKE daemon in strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1 allows remote attackers to execute arbitrary code via crafted certificate or identity data triggering buffer overflows

Reporter	Title	Published	Views	Family All 13
Check Point Advisories	strongSwan Certificate and Identification Payload Parsing Buffer Overflow (CVE-2010-2628)	4 Oct 201000:00	–	checkpoint_advisories
Cvelist	CVE-2010-2628	20 Aug 201017:00	–	cvelist
Debian CVE	CVE-2010-2628	20 Aug 201017:00	–	debiancve
EUVD	EUVD-2010-2632	7 Oct 202500:30	–	euvd
NVD	CVE-2010-2628	20 Aug 201018:00	–	nvd
OSV	DEBIAN-CVE-2010-2628	20 Aug 201018:00	–	osv
Prion	Buffer overflow	20 Aug 201018:00	–	prion
RedhatCVE	CVE-2010-2628	22 May 202512:33	–	redhatcve
SUSE CVE	SUSE CVE-2010-2628	15 Feb 202305:58	–	susecve
Tenable Nessus	openSUSE Security Update : strongswan (openSUSE-SU-2010:0496-1)	10 Aug 201000:00	–	nessus

NVD

Node

strongswan strongswanMatch4.3.0

strongswan strongswanMatch4.3.1

strongswan strongswanMatch4.3.2

strongswan strongswanMatch4.3.3

strongswan strongswanMatch4.3.4

strongswan strongswanMatch4.3.5

strongswan strongswanMatch4.3.6

strongswan strongswanMatch4.4.0

Source	Link
download	www.download.strongswan.org/patches/08_snprintf_patch/strongswan-4.3.3_snprintf.patch
trac	www.trac.strongswan.org/projects/strongswan/wiki/441
download	www.download.strongswan.org/patches/08_snprintf_patch/strongswan-4.4.0_snprintf.patch
download	www.download.strongswan.org/patches/08_snprintf_patch/strongswan-4.3.6_snprintf.patch
download	www.download.strongswan.org/patches/08_snprintf_patch/strongswan-4.3.5_snprintf.patch
bugzilla	www.bugzilla.novell.com/615915
lists	www.lists.opensuse.org/opensuse-updates/2010-08/msg00026.html
vupen	www.vupen.com/english/advisories/2010/2085
secunia	www.secunia.com/advisories/40956
securityfocus	www.securityfocus.com/bid/42444

29 Apr 2026 01:13Current

7.9High risk

Vulners AI Score7.9

CVSS 27.5

EPSS0.05728

CWE-94