Lucene search
+L

21 matches found

Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.9 views

Fedora 37 : strongswan (2022-525510c815)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-525510c815 advisory. Resolves CVE-2022-40617 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

7.5CVSS7.5AI score0.01634EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.31 views

CBL Mariner 2.0 Security Update: strongswan (CVE-2022-40617)

The version of strongswan installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-40617 advisory. - strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by...

7.5CVSS7.4AI score0.01634EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2023/03/02 4:18 a.m.54 views

CVE-2022-40617 affecting package strongswan 5.7.2-5

CVE-2022-40617 affecting package strongswan 5.7.2-5. A patched version of the package is available...

7.5CVSS7.9AI score0.01634EPSS
Exploits0
CBLMariner
CBLMariner
added 2023/01/03 8:57 p.m.53 views

CVE-2022-40617 affecting package strongswan for versions less than 5.9.8-1

CVE-2022-40617 affecting package strongswan for versions less than 5.9.8-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.7AI score0.01634EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/12/22 12:0 a.m.36 views

Fedora 36 : strongswan (2022-11bf2b2597)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-11bf2b2597 advisory. Resolves CVE-2022-40617 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

7.5CVSS7.5AI score0.01634EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/11/24 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2022:4197-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01634EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/11/24 12:0 a.m.27 views

SUSE SLED15: strongswan / strongswan-doc / strongswan-hmac / strongswan-ipsec / etc (SUSE-SU-2022:4197-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4197-1 advisory. Security issues fixed: - CVE-2022-40617: Fixed that using untrusted URIs for revocation checking could le...

7.5CVSS7.2AI score0.01634EPSS
Exploits0References4
OSV
OSV
added 2022/11/23 11:57 a.m.7 views

SUSE-SU-2022:4197-1 Security update for strongswan

This update for strongswan fixes the following issues: Security issues fixed: - CVE-2022-40617: Fixed that using untrusted URIs for revocation checking could lead to denial of service bsc1203556 Feature changes: - Enable Marvell plugin jscSLE-20151...

7.5CVSS7.4AI score0.01634EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/11/23 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2022:4159-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01634EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/11/23 12:0 a.m.32 views

SUSE SLES12: strongswan / strongswan-doc / strongswan-hmac / strongswan-ipsec / etc (SUSE-SU-2022:4185-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4185-1 advisory. - CVE-2022-40617: Fixed that using untrusted URIs for revocation checking could lead to denial of service bsc1203556 Tenable has extracted t...

7.5CVSS7.2AI score0.01634EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/11/23 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2022:4185-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01634EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/11/01 12:0 a.m.24 views

strongSwan 4.x < 5.9.8 DoS Vulnerability

strongSwan is prone to a denial of service DoS vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

7.5CVSS7.4AI score0.01634EPSS
Exploits0References1
CVE
CVE
added 2022/10/31 12:0 a.m.181 views

CVE-2022-40617

strongSwan before 5.9.8 is affected by a denial-of-service in the revocation plugin when processing a crafted end-entity certificate containing a CRL/OCSP URL pointing to an attacker‑controlled server that does not respond or misbehaves. This is documented across multiple advisories (Linux distri...

7.5CVSS7.1AI score0.01634EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2022/10/31 12:0 a.m.36 views

CVE-2022-40617

strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity and intermediate CA certificate that contains a CRL/OCSP URL that points to a server under the attacker's control that doesn't properly respond but for example jus...

7.5CVSS7.4AI score0.01634EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/10/31 12:0 a.m.37 views

CVE-2022-40617

strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity and intermediate CA certificate that contains a CRL/OCSP URL that points to a server under the attacker's control that doesn't properly respond but for example jus...

7.5CVSS7.4AI score0.01634EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/10/10 12:0 a.m.42 views

FreeBSD : strongswan -- DOS attack vulnerability (0ae56f3e-488c-11ed-bb31-b42e99a1b9c3)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 0ae56f3e-488c-11ed-bb31-b42e99a1b9c3 advisory. - Lahav Schlesinger reported a bug related to online certificate revocation checking that can lead to a...

7.5CVSS7.5AI score0.01634EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/10/10 12:0 a.m.29 views

Debian dla-3143 : charon-cmd - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3143 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3143-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS7.4AI score0.01634EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/10/07 12:0 a.m.33 views

Debian DSA-5249-1 : strongswan - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5249 advisory. Lahav Schlesinger discovered a vulnerability in the revocation plugin of strongSwan, an IKE/IPsec suite. The revocation plugin uses OCSP URIs and CRL distribution points C...

7.5CVSS7.3AI score0.01634EPSS
Exploits0References6
Debian
Debian
added 2022/10/06 4:7 p.m.54 views

[SECURITY] [DSA 5249-1] strongswan security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5249-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez October 06, 2022 https://www.debian.org/security/faq -...

7.5CVSS7.5AI score0.01634EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.38 views

Ubuntu 16.04 ESM : strongSwan vulnerability (USN-5651-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5651-2 advisory. USN-5651-1 fixed a vulnerability in strongSwan. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable has extracted the...

7.5CVSS7.4AI score0.01634EPSS
Exploits0References2
Rows per page
Query Builder