6.6 Medium
AI Score
Confidence
Low
0.017 Low
EPSS
Percentile
87.7%
IKEv2 in strongSwan 4.0.7 before 5.1.3 allows remote attackers to bypass authentication by rekeying an IKE_SA during (1) initiation or (2) re-authentication, which triggers the IKE_SA state to be set to established.