Lucene search
K

18 matches found

OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2019:3056-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.07124EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.31 views

SUSE: Security Advisory (SUSE-SU-2019:3266-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.07124EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2019/12/12 12:0 a.m.38 views

SUSE SLED12 / SLES12 Security Update : strongswan (SUSE-SU-2019:3266-1)

This update for strongswan provides the following fixes : Security issues fixed : CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker with local user credentials to resource exhaustion and denial of service while reading from the socket bsc1094462. CVE-2018-10811: Fixed a...

7.5CVSS6.7AI score0.07124EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2019/12/03 12:0 a.m.36 views

openSUSE Security Update : strongswan (openSUSE-2019-2598)

This update for strongswan fixes the following issues : Security issues fixed : - CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker with local user credentials to resource exhaustion and denial of service while reading from the socket bsc1094462. - CVE-2018-10811: Fixed...

7.5CVSS6.7AI score0.07124EPSS
Exploits0References9
Check Point Advisories
Check Point Advisories
added 2019/11/18 12:0 a.m.38 views

StrongSwan OpenSSL Plugin FIPS Mode Denial-of-Service (CVE-2018-10811)

A denial-of-service vulnerability exists in StrongSwan. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...

5CVSS4.9AI score0.07124EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/02/07 12:0 a.m.38 views

Photon OS 1.0: Strongswan PHSA-2018-1.0-0178

An update of the strongswan package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-1.0-0178. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.5CVSS7AI score0.07124EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.126 views

Fedora 28 : strongswan (2018-0de3edbdea)

New version 5.6.3 Security fix for CVE-2018-10811 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

7.5CVSS6.8AI score0.07124EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/11/27 12:0 a.m.38 views

GLSA-201811-16 : strongSwan: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201811-16 strongSwan: Multiple vulnerabilities Multiple vulnerabilities have been discovered in strongSwan. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could cause a Denial of Service...

7.5CVSS6.5AI score0.07124EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2018/09/27 12:0 a.m.36 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : strongSwan vulnerabilities (USN-3771-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3771-1 advisory. It was discovered that strongSwan incorrectly handled IKEv2 key derivation. A remote attacker could possibly use this issue to...

7.5CVSS7.1AI score0.07124EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2018/09/26 12:0 a.m.36 views

Ubuntu: Security Advisory (USN-3771-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.07124EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2018/09/25 12:34 p.m.62 views

USN-3771-1: strongSwan vulnerabilities

It was discovered that strongSwan incorrectly handled IKEv2 key derivation. A remote attacker could possibly use this issue to cause strongSwan to crash, resulting in a denial of service. CVE-2018-10811 Sze Yiu Chau discovered that strongSwan incorrectly handled parsing OIDs in the gmp plugin. A...

7.5CVSS7AI score0.07124EPSS
Exploits0
CVE
CVE
added 2018/06/19 9:0 p.m.256 views

CVE-2018-10811

CVE-2018-10811 affects strongSwan (5.6.0 and older). Root cause: a missing initialization of a variable in the IKEv2 key derivation, enabling a remote attacker to trigger a denial-of-service condition. Public disclosures describe DoS via specially crafted requests, with CVSS in the 5.x range (bas...

7.5CVSS7.4AI score0.07124EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVE
added 2018/06/19 9:0 p.m.40 views

CVE-2018-10811

strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable...

7.5CVSS6.8AI score0.07124EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/06/18 12:0 a.m.39 views

Debian DSA-4229-1 : strongswan - security update

Two vulnerabilities were discovered in strongSwan, an IKE/IPsec suite. - CVE-2018-5388 The stroke plugin did not verify the message length when reading from its control socket. This vulnerability could lead to denial of service. On Debian write access to the socket requires root permission on...

7.5CVSS6.8AI score0.07124EPSS
Exploits0References8
Debian
Debian
added 2018/06/16 9:14 a.m.49 views

[SECURITY] [DSA 4229-1] strongswan security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4229-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez June 14, 2018 https://www.debian.org/security/faq -...

7.5CVSS8.1AI score0.07124EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/06/16 12:0 a.m.26 views

Fedora Update for strongswan FEDORA-2018-0de3edbdea

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.07124EPSS
Exploits0References2
OSV
OSV
added 2018/05/28 12:0 p.m.5 views

UBUNTU-CVE-2018-10811

strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable...

7.5CVSS6.9AI score0.07124EPSS
Exploits0References5
FreeBSD
FreeBSD
added 2018/05/16 12:0 a.m.31 views

strongswan -- Fix Denial-of-Service Vulnerability strongSwan (CVE-2018-10811, CVE-2018-5388)

strongSwan security team reports: A denial-of-service vulnerability in the IKEv2 key derivation was fixed if the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF which is not FIPS-compliant. So this should only affect very specific setups, but in such configurations all...

7.5CVSS4.4AI score0.07124EPSS
Exploits0References2
Rows per page
Query Builder