Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDE6CCAF8A-6C63-11E7-9B01-2047478F2F70
HistoryMay 30, 2017 - 12:00 a.m.

strongswan -- multiple vulnerabilities

2017-05-3000:00:00
vuxml.freebsd.org
11

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.009

Percentile

82.6%

JSON

strongSwan security team reports:

RSA public keys passed to the gmp plugin aren’t validated sufficiently
before attempting signature verification, so that invalid input might
lead to a floating point exception. [CVE-2017-9022]
ASN.1 CHOICE types are not correctly handled by the ASN.1 parser when
parsing X.509 certificates with extensions that use such types. This
could lead to infinite looping of the thread parsing a specifically crafted certificate.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchstrongswan= 4.4.0UNKNOWN
FreeBSDanynoarchstrongswan<= 5.5.2UNKNOWN

Related

debian 2
ibm 4
nessus 15
openvas 10
suse 1
osv 4
ubuntu 1
ubuntucve 2
cvelist 2
cve 2
redhatcve 2
prion 2
debiancve 2
veracode 2
nvd 2
alpinelinux 2
checkpoint_advisories 1
freebsd 1
photon 2
debian
debian
[SECURITY] [DLA 973-1] strongswan security update
2017-06-01 20:15:45
[SECURITY] [DSA 3866-1] strongswan security update
2017-05-30 12:14:49
ibm
ibm
Security Bulletin: Multiple vulnerabilities in strongswan affect IBM Flex System Manager (FSM) (CVE-2017-9023, CVE-2017-9022)
2018-06-18 01:38:11
Security Bulletin: Vulnerabilities in strongSwan affect IBM Chassis Management Module (CVE-2017-9022, CVE-2017-9023)
2019-01-31 02:25:02
Security Bulletin: Vulnerabilities in strongswan affect IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter Systems
2023-04-14 14:32:25
nessus
nessus
Debian DSA-3866-1 : strongswan - security update
2017-05-31 00:00:00
Debian DLA-973-1 : strongswan security update
2017-06-02 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : strongSwan vulnerabilities (USN-3301-1)
2017-05-31 00:00:00
openvas
openvas
Debian Security Advisory DSA 3866-1 (strongswan - security update)
2017-05-30 00:00:00
Debian: Security Advisory (DLA-973-1)
2018-01-28 00:00:00
Debian: Security Advisory (DSA-3866-1)
2017-05-29 00:00:00
suse
suse
Security update for strongswan (important)
2017-06-01 18:09:41
osv
osv
strongswan - security update
2017-05-30 00:00:00
strongswan - security update
2017-06-01 00:00:00
CVE-2017-9022
2017-06-08 16:29:00
ubuntu
ubuntu
strongSwan vulnerabilities
2017-05-30 00:00:00
ubuntucve
ubuntucve
CVE-2017-9022
2017-05-30 00:00:00
CVE-2017-9023
2017-05-30 00:00:00
cvelist
cvelist
CVE-2017-9022
2017-06-08 16:00:00
CVE-2017-9023
2017-06-08 16:00:00
cve
cve
CVE-2017-9022
2017-06-08 16:29:00
CVE-2017-9023
2017-06-08 16:29:00
redhatcve
redhatcve
CVE-2017-9022
2017-05-31 07:49:09
CVE-2017-9023
2017-05-31 07:49:33
prion
prion
Code injection
2017-06-08 16:29:00
Code injection
2017-06-08 16:29:00
debiancve
debiancve
CVE-2017-9022
2017-06-08 16:29:00
CVE-2017-9023
2017-06-08 16:29:00
veracode
veracode
Denial Of Service (DoS)
2020-05-10 23:23:20
Denial Of Service (DoS)
2020-05-10 23:23:20
nvd
nvd
CVE-2017-9022
2017-06-08 16:29:00
CVE-2017-9023
2017-06-08 16:29:00
alpinelinux
alpinelinux
CVE-2017-9022
2017-06-08 16:29:00
CVE-2017-9023
2017-06-08 16:29:00
checkpoint_advisories
checkpoint_advisories
strongSwan x509 Plugin Denial of Service (CVE-2017-9023)
2017-07-17 00:00:00
freebsd
freebsd
strongswan -- Denial-of-service vulnerability in the x509 plugin
2017-05-30 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0126
2018-04-24 00:00:00
Critical Photon OS Security Update - PHSA-2018-0126
2018-04-24 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.009

Percentile

82.6%

JSON
Related for E6CCAF8A-6C63-11E7-9B01-2047478F2F70
debian2ibm4nessus15openvas10suse1osv4ubuntu1ubuntucve2cvelist2cve2redhatcve2prion2debiancve2veracode2nvd2alpinelinux2checkpoint_advisories1freebsd1photon2