Lucene search
K

32 matches found

Tenable Nessus
Tenable Nessus
added 2025/07/25 12:0 a.m.3 views

NewStart CGSL MAIN 7.02 : strongswan Vulnerability (NS-SA-2025-0154)

The remote NewStart CGSL host, running version MAIN 7.02, has strongswan packages installed that are affected by a vulnerability: - strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in...

9.8CVSS9.3AI score0.02309EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2024-dc9e695c3a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.02309EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.11 views

Fedora 41 : strongswan (2024-dc9e695c3a)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-dc9e695c3a advisory. Automatic update for strongswan-5.9.14-1.fc41. Changelog Fri May 31 2024 Paul Wouters - 5.9.14-1 - Resolves: rhbz2254560 CVE-2023-41913 buffer overflow and...

9.8CVSS8.5AI score0.02309EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.16 views

Photon OS 3.0: Strongswan PHSA-2023-3.0-0694

An update of the strongswan package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0694. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.8CVSS9.5AI score0.02309EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.19 views

CBL Mariner 2.0 Security Update: strongswan (CVE-2023-41913)

The version of strongswan installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-41913 advisory. - strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a ...

9.8CVSS9.2AI score0.02309EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/06/13 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2024-0216)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.02309EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/06/11 12:0 a.m.10 views

Fedora: Security Advisory (FEDORA-2024-6712c699fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.02309EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/11 12:0 a.m.17 views

Fedora 40 : strongswan (2024-6712c699fc)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-6712c699fc advisory. Fixes CVE-2023-41913 buffer overflow and possible RCE, various IKEv2 improvements Tenable has extracted the preceding description block directly from the...

9.8CVSS8.6AI score0.02309EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.51 views

CVE-2023-41913 affecting package strongswan for versions less than 5.9.12-1

CVE-2023-41913 affecting package strongswan for versions less than 5.9.12-1. An upgraded version of the package is available that resolves this issue...

9.8CVSS6.9AI score0.02309EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.14 views

openSUSE: Security Advisory for strongswan (SUSE-SU-2023:4529-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.02309EPSS
Exploits0References2
Circl
Circl
added 2023/12/30 11:6 a.m.8 views

CVE-2023-41913

creationtimestamp| type| source ---|---|--- 2023-12-30 11:06:36+00:00| seen| https://t.me/ctinow/160849...

9.8CVSS8.6AI score0.02309EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2023/12/18 5:39 p.m.52 views

CVE-2023-41913 affecting package strongswan for versions less than 5.9.10-3

CVE-2023-41913 affecting package strongswan for versions less than 5.9.10-3. A patched version of the package is available...

9.8CVSS9.6AI score0.02309EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/12/15 12:0 a.m.45 views

Ubuntu 16.04 ESM / 18.04 ESM : strongSwan vulnerability (USN-6488-2)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6488-2 advisory. USN-6488-1 fixed a vulnerability in strongSwan. This update provides the corresponding updates for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Tenable has...

9.8CVSS7.8AI score0.02309EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/12/10 12:0 a.m.15 views

FreeBSD : strongswan -- buffer overflow (bbda3d16-968e-11ee-b780-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the bbda3d16-968e-11ee-b780-b42e991fc52e advisory. - strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via...

9.8CVSS9.3AI score0.02309EPSS
Exploits0References3
NVD
NVD
added 2023/12/07 5:15 a.m.15 views

CVE-2023-41913

strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKESAINIT message...

9.8CVSS0.02309EPSS
Exploits0References6
CVE
CVE
added 2023/12/07 12:0 a.m.133 views

CVE-2023-41913

CVE-2023-41913 affects strongSwan prior to 5.9.12, due to a buffer overflow in the DH proxy (charon-tkm) that can trigger unauthenticated remote code execution via a crafted IKE_SA_INIT message. Earliest affected version is 5.3.0. Reported impact is total compromise of confidentiality, integrity,...

9.8CVSS9.7AI score0.02309EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2023/12/07 12:0 a.m.49 views

CVE-2023-41913

strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKESAINIT message...

10AI score0.02309EPSS
Exploits0References3
Debian
Debian
added 2023/11/24 3:45 p.m.78 views

[SECURITY] [DLA 3663-1] strongswan security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3663-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb November 24, 2023 https://wiki.debian.org/LTS -...

9.8CVSS10AI score0.02309EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/11/24 12:0 a.m.40 views

FreeBSD : strongSwan -- vulnerability in charon-tkm (a62c0c50-8aa0-11ee-ac0d-00e0670f2660)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the a62c0c50-8aa0-11ee-ac0d-00e0670f2660 advisory. - strongSwan reports: A vulnerability in charon-tkm related to processing DH public values was discover...

9.8CVSS9AI score0.02309EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/11/24 12:0 a.m.16 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : strongswan (SUSE-SU-2023:4529-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4529-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's...

9.8CVSS8.2AI score0.02309EPSS
Exploits0References4
Rows per page
Query Builder