CVE-2015-8023

2015-11-1816:59:00

CWE-20

CWE-264

[email protected]

web.nvd.nist.gov

cve

eap-mschapv2

protocol

implementation

vulnerability

strongswan

authentication

6.5 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

76.9%

JSON

The server implementation of the EAP-MSCHAPv2 protocol in the eap-mschapv2 plugin in strongSwan 4.2.12 through 5.x before 5.3.4 does not properly validate local state, which allows remote attackers to bypass authentication via an empty Success message in response to an initial Challenge message.

CPENameOperatorVersion
canonical:ubuntu_linuxcanonical ubuntu linuxeq15.10
canonical:ubuntu_linuxcanonical ubuntu linuxeq14.04
canonical:ubuntu_linuxcanonical ubuntu linuxeq15.04
strongswan:strongswanstrongswaneq5.2.3
strongswan:strongswanstrongswaneq4.3.7
strongswan:strongswanstrongswaneq4.2.12
strongswan:strongswanstrongswaneq5.1.2
strongswan:strongswanstrongswaneq4.2.16
strongswan:strongswanstrongswaneq4.5.3
strongswan:strongswanstrongswaneq4.5.2

CPE	Name	Operator	Version
canonical:ubuntu_linux	canonical ubuntu linux	eq	15.10
canonical:ubuntu_linux	canonical ubuntu linux	eq	14.04
canonical:ubuntu_linux	canonical ubuntu linux	eq	15.04
strongswan:strongswan	strongswan	eq	5.2.3
strongswan:strongswan	strongswan	eq	4.3.7
strongswan:strongswan	strongswan	eq	4.2.12
strongswan:strongswan	strongswan	eq	5.1.2
strongswan:strongswan	strongswan	eq	4.2.16
strongswan:strongswan	strongswan	eq	4.5.3
strongswan:strongswan	strongswan	eq	4.5.2