Lucene search
K

2534 matches found

OSV
OSV
added 2026/04/27 4:59 p.m.3 views

SUSE-SU-2026:1637-1 Security update for strongswan

This update for strongswan fixes the following issues: - CVE-2026-35328: infinite loop when handling supported versions TLS extension bsc1261712. - CVE-2026-35329: null pointer dereference when processing padding in PKCS7 bsc1261717. - CVE-2026-35330: integer underflow when handling EAP-SIM/AKA...

5.2AI score
Exploits6References15
Tenable Nessus
Tenable Nessus
added 2026/04/23 12:0 a.m.9 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : strongSwan vulnerabilities (USN-8196-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8196-1 advisory. Haruto Kimura discovered that strongSwan incorrectly handled the supportedversions extension in TLS. A remote attacker could possibly...

6.1AI score
Exploits6References8
Debian
Debian
added 2026/04/22 12:57 p.m.7 views

[SECURITY] [DSA 6227-1] strongswan security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6227-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez April 22, 2026 https://www.debian.org/security/faq -...

6.4AI score
Exploits6
OSV
OSV
added 2026/04/22 12:46 p.m.12 views

USN-8196-1 strongswan vulnerabilities

Haruto Kimura discovered that strongSwan incorrectly handled the supportedversions extension in TLS. A remote attacker could possibly use this issue to cause strongSwan to stop responding, resulting in a denial of service. CVE-2026-35328 Haruto Kimura discovered that strongSwan incorrectly handle...

6AI score
Exploits6References8
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.10 views

PT-2026-35581

USN-8196-1 fixed vulnerabilities in strongSwan. This update provides the corresponding update to Ubuntu 26.04 LTS. Original advisory details: Haruto Kimura discovered that strongSwan incorrectly handled the supported versions extension in TLS. A remote attacker could possibly use this issue to...

5.9AI score
Exploits6References37
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.11 views

PT-2026-35584

USN-8196-1 fixed vulnerabilities in strongSwan. This update provides the corresponding update to Ubuntu 26.04 LTS. Original advisory details: Haruto Kimura discovered that strongSwan incorrectly handled the supported versions extension in TLS. A remote attacker could possibly use this issue to...

5.9AI score
Exploits6References36
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.6 views

PT-2026-35583

USN-8196-1 fixed vulnerabilities in strongSwan. This update provides the corresponding update to Ubuntu 26.04 LTS. Original advisory details: Haruto Kimura discovered that strongSwan incorrectly handled the supported versions extension in TLS. A remote attacker could possibly use this issue to...

5.9AI score
Exploits6References37
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.11 views

PT-2026-35580

USN-8196-1 fixed vulnerabilities in strongSwan. This update provides the corresponding update to Ubuntu 26.04 LTS. Original advisory details: Haruto Kimura discovered that strongSwan incorrectly handled the supported versions extension in TLS. A remote attacker could possibly use this issue to...

5.9AI score
Exploits6References36
OPENSUSE Linux
OPENSUSE Linux
added 2026/04/21 12:0 a.m.5 views

Security update for strongswan (important)

openSUSE security update: security update for strongswan ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20547-1 Rating: important References: bsc1257359 bsc1259472 Cross-References: CVE-2025-9615 CVE-2026-25075 CVSS scores: CVE-2025-9615 SUSE : 5.5...

8.2CVSS5.7AI score0.01013EPSS
Exploits2References2
OSV
OSV
added 2026/04/16 9:6 a.m.11 views

OPENSUSE-SU-2026:20547-1 Security update for strongswan

This update for strongswan fixes the following issues: Update to strongswan 6.0.4: - CVE-2025-9615: NetworkManager File Access bsc1257359. - CVE-2026-25075: Integer Underflow When Handling EAP-TTLS AVP bsc1259472. Changes for strongswan: - Fixed a vulnerability in the NetworkManager plugin that...

8.7CVSS5.7AI score0.01013EPSS
Exploits2References4
OSV
OSV
added 2026/04/16 9:5 a.m.2 views

SUSE-SU-2026:21203-1 Security update for strongswan

This update for strongswan fixes the following issues: Update to strongswan 6.0.4: - CVE-2025-9615: NetworkManager File Access bsc1257359. - CVE-2026-25075: Integer Underflow When Handling EAP-TTLS AVP bsc1259472. Changes for strongswan: - Fixed a vulnerability in the NetworkManager plugin that...

8.7CVSS5.9AI score0.01013EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2026/04/15 12:0 a.m.4 views

SUSE SLES12 Security Update : strongswan (SUSE-SU-2026:1307-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:1307-1 advisory. This update for strongswan fixes the following issue: - CVE-2026-25075: integer underflow when handling EAP-TTLS AVP bsc1259472. Tenable has extracted...

8.7CVSS5.9AI score0.01013EPSS
Exploits2References4
OSV
OSV
added 2026/04/14 10:35 a.m.13 views

SUSE-SU-2026:1307-1 Security update for strongswan

This update for strongswan fixes the following issue: - CVE-2026-25075: integer underflow when handling EAP-TTLS AVP bsc1259472...

8.7CVSS6.2AI score0.01013EPSS
Exploits2References3
EUVD
EUVD
added 2026/04/07 4:52 p.m.5 views

EUVD-2026-19804

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. In 5.2.5188 and earlier, a pre-authentication denial-of-service vulnerability exists in SoftEther VPN Developer Edition 5.2.5188 and likely earlier versions of Developer Edition. An unauthenticated remote attacker can cra...

7.5CVSS6AI score0.0045EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/07 4:52 p.m.5 views

CVE-2026-39312 Pre-Auth EAP-TLS DoS on SoftEther VPN Developer Edition

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. In 5.2.5188 and earlier, a pre-authentication denial-of-service vulnerability exists in SoftEther VPN Developer Edition 5.2.5188 and likely earlier versions of Developer Edition. An unauthenticated remote attacker can cra...

7.5CVSS6AI score0.0045EPSS
Exploits1References1
HackRead
HackRead
added 2026/03/30 5:7 p.m.8 views

15-Year-Old strongSwan Flaw Lets Attackers Crash VPNs via Integer Underflow

15-year-old strongSwan flaw allows attackers to crash VPNs via integer underflow bug, affecting EAP-TTLS plugin and multiple versions worldwide...

5.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/30 12:0 a.m.9 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.3.17 (RHSA-2026:6011)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:6011 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

9.8CVSS7.1AI score0.01256EPSS
Exploits2References15
OSV
OSV
added 2026/03/29 12:55 a.m.7 views

MGASA-2026-0072 Updated strongswan packages fix security vulnerability

strongSwan 4.5.0 6.0.5 EAP-TTLS AVP Parsing Integer Underflow. CVE-2026-25075...

8.7CVSS5.8AI score0.01013EPSS
Exploits2References5
Debian
Debian
added 2026/03/27 6:21 p.m.28 views

[SECURITY] [DLA 4512-1] strongswan security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4512-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz March 27, 2026 https://wiki.debian.org/LTS -...

8.7CVSS5.8AI score0.01013EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/03/27 12:0 a.m.7 views

Debian dla-4512 : charon-cmd - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4512 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4512-1 [email protected] https://www.debian.org/lts/security/...

8.7CVSS5.9AI score0.01013EPSS
Exploits2References4
Rows per page
Query Builder