32 matches found
NewStart CGSL MAIN 7.02 : strongswan Vulnerability (NS-SA-2025-0154)
The remote NewStart CGSL host, running version MAIN 7.02, has strongswan packages installed that are affected by a vulnerability: - strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in...
Fedora: Security Advisory (FEDORA-2024-dc9e695c3a)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 41 : strongswan (2024-dc9e695c3a)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-dc9e695c3a advisory. Automatic update for strongswan-5.9.14-1.fc41. Changelog Fri May 31 2024 Paul Wouters - 5.9.14-1 - Resolves: rhbz2254560 CVE-2023-41913 buffer overflow and...
Photon OS 3.0: Strongswan PHSA-2023-3.0-0694
An update of the strongswan package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0694. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
CBL Mariner 2.0 Security Update: strongswan (CVE-2023-41913)
The version of strongswan installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-41913 advisory. - strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a ...
Mageia: Security Advisory (MGASA-2024-0216)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2024-6712c699fc)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 40 : strongswan (2024-6712c699fc)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-6712c699fc advisory. Fixes CVE-2023-41913 buffer overflow and possible RCE, various IKEv2 improvements Tenable has extracted the preceding description block directly from the...
CVE-2023-41913 affecting package strongswan for versions less than 5.9.12-1
CVE-2023-41913 affecting package strongswan for versions less than 5.9.12-1. An upgraded version of the package is available that resolves this issue...
openSUSE: Security Advisory for strongswan (SUSE-SU-2023:4529-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-41913
creationtimestamp| type| source ---|---|--- 2023-12-30 11:06:36+00:00| seen| https://t.me/ctinow/160849...
CVE-2023-41913 affecting package strongswan for versions less than 5.9.10-3
CVE-2023-41913 affecting package strongswan for versions less than 5.9.10-3. A patched version of the package is available...
Ubuntu 16.04 ESM / 18.04 ESM : strongSwan vulnerability (USN-6488-2)
The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6488-2 advisory. USN-6488-1 fixed a vulnerability in strongSwan. This update provides the corresponding updates for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Tenable has...
FreeBSD : strongswan -- buffer overflow (bbda3d16-968e-11ee-b780-b42e991fc52e)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the bbda3d16-968e-11ee-b780-b42e991fc52e advisory. - strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via...
CVE-2023-41913
strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKESAINIT message...
CVE-2023-41913
CVE-2023-41913 affects strongSwan prior to 5.9.12, due to a buffer overflow in the DH proxy (charon-tkm) that can trigger unauthenticated remote code execution via a crafted IKE_SA_INIT message. Earliest affected version is 5.3.0. Reported impact is total compromise of confidentiality, integrity,...
CVE-2023-41913
strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKESAINIT message...
[SECURITY] [DLA 3663-1] strongswan security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3663-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb November 24, 2023 https://wiki.debian.org/LTS -...
FreeBSD : strongSwan -- vulnerability in charon-tkm (a62c0c50-8aa0-11ee-ac0d-00e0670f2660)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the a62c0c50-8aa0-11ee-ac0d-00e0670f2660 advisory. - strongSwan reports: A vulnerability in charon-tkm related to processing DH public values was discover...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : strongswan (SUSE-SU-2023:4529-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4529-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's...