Lucene search
FreeBSD6FB521B0-D388-11E3-A790-000C2980A9F3HistoryMar 12, 2014 - 12:00 a.m.
strongswan -- Remote Authentication Bypass
2014-03-1200:00:00
vuxml.freebsd.org
11
0.017 Low
EPSS
Percentile
87.8%
strongSwan developers report:
Remote attackers are able to bypass authentication by rekeying an
IKE_SA during (1) initiation or (2) re-authentication, which
triggers the IKE_SA state to be set to established.
Only installations that actively initiate or re-authenticate IKEv2
IKE_SAs are affected.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | strongswan | < 5.1.3 | UNKNOWN |
Related
suse
suse
Security update for strongswan (important)
2014-04-15 21:04:16
prion
prion
Authentication flaw
2014-04-16 18:37:00
securityvulns
securityvulns
[SECURITY] [DSA 2903-1] strongswan security update
2014-05-04 00:00:00
Openswan / Strongswan security vulnerabilities
2014-05-07 00:00:00
seebug
seebug
strongSwan IKEv2 SA验证绕过漏洞
2014-04-18 00:00:00
openvas
openvas
SUSE: Security Advisory for strongswan (SUSE-SU-2014:0529-1)
2015-10-13 00:00:00
Debian Security Advisory DSA 2903-1 (strongswan - security update)
2014-04-14 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:0529-1)
2021-06-09 00:00:00
cve
cve
CVE-2014-2338
2014-04-16 18:37:00
nessus
nessus
Fedora 20 : strongswan-5.1.3-1.fc20 (2014-5231)
2014-04-25 00:00:00
SuSE 11.3 Security Update : strongswan (SAT Patch Number 9089)
2014-04-16 00:00:00
debian
debian
[SECURITY] [DSA 2903-1] strongswan security update
2014-04-14 15:01:58
cvelist
cvelist
CVE-2014-2338
2014-04-16 18:00:00
osv
osv
strongswan - security update
2014-04-14 00:00:00
debiancve
debiancve
CVE-2014-2338
2014-04-16 18:37:00
ubuntucve
ubuntucve
CVE-2014-2338
2014-04-16 00:00:00
gentoo
gentoo
strongSwan: Multiple Vulnerabilities
2014-12-13 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: strongswan-5.1.3-1.fc20
2014-04-24 07:35:30
[SECURITY] Fedora 19 Update: strongswan-5.1.3-1.fc19
2014-04-24 07:41:29
