Lucene search
+L

21 matches found

nessus
nessus
added 2024/11/14 12:0 a.m.9 views

Fedora 37 : strongswan (2022-525510c815)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-525510c815 advisory. Resolves CVE-2022-40617 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

7.5CVSS7.5AI score0.01634EPSS
Exploits0References2
nessus
nessus
added 2023/03/20 12:0 a.m.31 views

CBL Mariner 2.0 Security Update: strongswan (CVE-2022-40617)

The version of strongswan installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-40617 advisory. - strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by...

7.5CVSS7.4AI score0.01634EPSS
Exploits0References2
cbl_mariner
cbl_mariner
added 2023/03/02 4:18 a.m.54 views

CVE-2022-40617 affecting package strongswan 5.7.2-5

CVE-2022-40617 affecting package strongswan 5.7.2-5. A patched version of the package is available...

7.5CVSS7.9AI score0.01634EPSS
Exploits0
cbl_mariner
cbl_mariner
added 2023/01/03 8:57 p.m.53 views

CVE-2022-40617 affecting package strongswan for versions less than 5.9.8-1

CVE-2022-40617 affecting package strongswan for versions less than 5.9.8-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.7AI score0.01634EPSS
Exploits0
nessus
nessus
added 2022/12/22 12:0 a.m.36 views

Fedora 36 : strongswan (2022-11bf2b2597)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-11bf2b2597 advisory. Resolves CVE-2022-40617 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

7.5CVSS7.5AI score0.01634EPSS
Exploits0References2
nessus
nessus
added 2022/11/24 12:0 a.m.27 views

SUSE SLED15: strongswan / strongswan-doc / strongswan-hmac / strongswan-ipsec / etc (SUSE-SU-2022:4197-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4197-1 advisory. Security issues fixed: - CVE-2022-40617: Fixed that using untrusted URIs for revocation checking could le...

7.5CVSS7.2AI score0.01634EPSS
Exploits0References4
openvas
openvas
added 2022/11/24 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2022:4197-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01634EPSS
Exploits0References2
osv
osv
added 2022/11/23 11:57 a.m.7 views

SUSE-SU-2022:4197-1 Security update for strongswan

This update for strongswan fixes the following issues: Security issues fixed: - CVE-2022-40617: Fixed that using untrusted URIs for revocation checking could lead to denial of service bsc1203556 Feature changes: - Enable Marvell plugin jscSLE-20151...

7.5CVSS7.4AI score0.01634EPSS
Exploits0References3
nessus
nessus
added 2022/11/23 12:0 a.m.32 views

SUSE SLES12: strongswan / strongswan-doc / strongswan-hmac / strongswan-ipsec / etc (SUSE-SU-2022:4185-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4185-1 advisory. - CVE-2022-40617: Fixed that using untrusted URIs for revocation checking could lead to denial of service bsc1203556 Tenable has extracted t...

7.5CVSS7.2AI score0.01634EPSS
Exploits0References4
openvas
openvas
added 2022/11/23 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2022:4185-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01634EPSS
Exploits0References4
openvas
openvas
added 2022/11/23 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2022:4159-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01634EPSS
Exploits0References2
openvas
openvas
added 2022/11/01 12:0 a.m.24 views

strongSwan 4.x < 5.9.8 DoS Vulnerability

strongSwan is prone to a denial of service DoS vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

7.5CVSS7.4AI score0.01634EPSS
Exploits0References1
cve
cve
added 2022/10/31 12:0 a.m.180 views

CVE-2022-40617

strongSwan before 5.9.8 is affected by a denial-of-service in the revocation plugin when processing a crafted end-entity certificate containing a CRL/OCSP URL pointing to an attacker‑controlled server that does not respond or misbehaves. This is documented across multiple advisories (Linux distri...

7.5CVSS7.1AI score0.01634EPSS
Exploits0References2Affected Software1
debiancve
debiancve
added 2022/10/31 12:0 a.m.32 views

CVE-2022-40617

strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity and intermediate CA certificate that contains a CRL/OCSP URL that points to a server under the attacker's control that doesn't properly respond but for example jus...

7.5CVSS7.4AI score0.01634EPSS
Exploits0
alpinelinux
alpinelinux
added 2022/10/31 12:0 a.m.37 views

CVE-2022-40617

strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity and intermediate CA certificate that contains a CRL/OCSP URL that points to a server under the attacker's control that doesn't properly respond but for example jus...

7.5CVSS7.4AI score0.01634EPSS
Exploits0
nessus
nessus
added 2022/10/10 12:0 a.m.42 views

FreeBSD : strongswan -- DOS attack vulnerability (0ae56f3e-488c-11ed-bb31-b42e99a1b9c3)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 0ae56f3e-488c-11ed-bb31-b42e99a1b9c3 advisory. - Lahav Schlesinger reported a bug related to online certificate revocation checking that can lead to a...

7.5CVSS7.5AI score0.01634EPSS
Exploits0References3
nessus
nessus
added 2022/10/10 12:0 a.m.29 views

Debian dla-3143 : charon-cmd - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3143 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3143-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS7.4AI score0.01634EPSS
Exploits0References4
nessus
nessus
added 2022/10/07 12:0 a.m.33 views

Debian DSA-5249-1 : strongswan - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5249 advisory. Lahav Schlesinger discovered a vulnerability in the revocation plugin of strongSwan, an IKE/IPsec suite. The revocation plugin uses OCSP URIs and CRL distribution points C...

7.5CVSS7.3AI score0.01634EPSS
Exploits0References6
debian
debian
added 2022/10/06 4:7 p.m.54 views

[SECURITY] [DSA 5249-1] strongswan security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5249-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez October 06, 2022 https://www.debian.org/security/faq -...

7.5CVSS7.5AI score0.01634EPSS
Exploits0
nessus
nessus
added 2022/10/05 12:0 a.m.38 views

Ubuntu 16.04 ESM : strongSwan vulnerability (USN-5651-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5651-2 advisory. USN-5651-1 fixed a vulnerability in strongSwan. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable has extracted the...

7.5CVSS7.4AI score0.01634EPSS
Exploits0References2
Rows per page
Query Builder