MiracleLinux 8 : libreswan-4.5-1.el8.1 (AXSA:2023-5324:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5324:01 advisory. libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan CVE-2023-30570 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : libreswan-4.6-3.el9.1 (AXSA:2023-5325:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5325:02 advisory. libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan CVE-2023-30570 Tenable has extracted the preceding description block directly from the...

EUVD-2005-2027

Malware in sbrugna...

EUVD-2005-2641

Malware in sbrugna...

EUVD-2013-1234

Malware in sbrugna...

EUVD-2005-3668

Malware in sbrugna...

EUVD-2023-33801

Malicious code in bioql PyPI...

EUVD-2025-22097

Malicious code in bioql PyPI...

EUVD-2025-24057

Malicious code in bioql PyPI...

CVE-2025-8763

A vulnerability was found in Ruijie EG306MG 3.01B11P309. It has been rated as problematic. This issue affects some unknown processing of the file /etc/strongswan.conf of the component strongSwan. The manipulation of the argument idontcareaboutsecurityanduseaggressivemodepsk leads to missing...

CVE-2025-8763 Ruijie EG306MG strongSwan strongswan.conf missing encryption

A vulnerability was found in Ruijie EG306MG 3.01B11P309. It has been rated as problematic. This issue affects some unknown processing of the file /etc/strongswan.conf of the component strongSwan. The manipulation of the argument idontcareaboutsecurityanduseaggressivemodepsk leads to missing...

CVE-2025-8763 Ruijie EG306MG strongSwan strongswan.conf missing encryption

A vulnerability was found in Ruijie EG306MG 3.01B11P309. It has been rated as problematic. This issue affects some unknown processing of the file /etc/strongswan.conf of the component strongSwan. The manipulation of the argument idontcareaboutsecurityanduseaggressivemodepsk leads to missing...

PT-2025-32450 · Unknown +1 · Strongswan +1

Name of the Vulnerable Software and Affected Versions: Ruijie EG306MG version 3.01B11P309 Description: A vulnerability exists due to missing encryption of sensitive data. The issue is related to the processing of the /etc/strongswan.conf file within the strongSwan component. Manipulation of the i...

CVE-2025-44647

In TRENDnet TEW-WLC100P 2.03b03, the idontcareaboutsecurityanduseaggressivemodepsk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK...

CVE-2025-44649

In the configuration file of racoon in the TRENDnet TEW-WLC100P 2.03b03, the first item of exchagemode is set to aggressive. Aggressive mode in IKE Phase 1 exposes identity information in plaintext, is vulnerable to offline dictionary attacks, and lacks flexibility in negotiating security...

CVE-2025-44649

In the configuration file of racoon in the TRENDnet TEW-WLC100P 2.03b03, the first item of exchagemode is set to aggressive. Aggressive mode in IKE Phase 1 exposes identity information in plaintext, is vulnerable to offline dictionary attacks, and lacks flexibility in negotiating security...

CVE-2025-44647

In TRENDnet TEW-WLC100P 2.03b03, the idontcareaboutsecurityanduseaggressivemodepsk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK...

CVE-2025-44647

In TRENDnet TEW-WLC100P 2.03b03, the idontcareaboutsecurityanduseaggressivemodepsk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK...

TRENDnet TEW-WLC100P 安全漏洞

The TRENDnet TEW-WLC100P is a wireless LAN controller from Trendnet, Inc. A security vulnerability exists in the TRENDnet TEW-WLC100P version 2.03b03 that stems from enabling IKEv1 aggressive mode, which could lead to an offline attack...

TRENDnet TEW-WLC100P 安全漏洞

The TRENDnet TEW-WLC100P is a wireless LAN controller from Trendnet, Inc. A security vulnerability exists in the TRENDnet TEW-WLC100P version 2.03b03, which stems from enabling aggressive mode in the racoon configuration file, which could lead to an offline dictionary attack...