CVE-2024-3652

🗓️ 17 Apr 2024 13:32:03Reported by redhat.comType

A flaw in Libreswan's compute_proto_keymat() function allows authenticated attackers to trigger a denial of service by exploiting a vulnerability in the handling of AH/ESP default settings for IKEv1 connections

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 73
OSV	UBUNTU-CVE-2024-3652	11 Apr 202402:15	–	osv
OSV	RHSA-2024:4417 Red Hat Security Advisory: libreswan security update	16 Sep 202419:42	–	osv
OSV	RHSA-2024:4200 Red Hat Security Advisory: libreswan security update	16 Sep 202419:41	–	osv
OSV	CVE-2024-3652	11 Apr 202402:15	–	osv
OSV	RHSA-2024:4431 Red Hat Security Advisory: libreswan security update	16 Sep 202419:42	–	osv
OSV	ALSA-2024:4050 Moderate: libreswan security update	23 Jun 202400:00	–	osv
OSV	RHSA-2024:4376 Red Hat Security Advisory: libreswan security update	16 Sep 202419:42	–	osv
OSV	RHSA-2024:4050 Red Hat Security Advisory: libreswan security update	16 Sep 202419:41	–	osv
OSV	MGASA-2024-0138 Updated libreswan packages fix security vulnerability	19 Apr 202401:16	–	osv
OSV	RLSA-2024:4050 Moderate: libreswan security update	2 Jul 202414:11	–	osv

Source	Link
cve	www.cve.org/CVERecord
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-3652
libreswan	www.libreswan.org/security/CVE-2024-3652
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 Apr 2024 13:03Current

7.9High risk

Vulners AI Score7.9

CVSS36.5

EPSS0.00026

CWE-617