9 matches found
CVE-2026-50752 Certificate Validation Bypass in VPN Site-to-Site Connections Using IKEv1
A weakness in the certificate validation logic of the deprecated IKEv1 key exchange may allow an unauthenticated attacker positioned as a man-in-the-middle to bypass certificate validation in VPN site-to-site connections that use certificate-based authentication. Successful exploitation could all...
Cisco Firepower Threat Defense (FTD) Software IKEv2 DoS Vulnerabilities (cisco-sa-asaftd-ikev2-dos-eBueGdEG)
According to its self-reported version, Cisco Secure Firewall Threat Defense FTD Software is affected by multiple vulnerabilities. - A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenticated, remote attacker to cause a...
CVE-2026-20049
A vulnerability in the processing of Galois/Counter Mode GCM-encrypted Internet Key Exchange version 2 IKEv2 IPsec traffic of Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an authenticated, remote attacker to cause...
PT-2025-52395
Name of the Vulnerable Software and Affected Versions WatchGuard Fireware OS versions 11.10.2 through 11.12.4 Update1 WatchGuard Fireware OS versions 12.0 through 12.11.5 WatchGuard Fireware OS versions 2025.1 through 2025.1.3 Description An out-of-bounds write vulnerability exists in the iked...
CVE-2025-20239
CVE-2025-20239 describes an unauthenticated, remote-execution of a memory-leak/DoS in the IKEv2 processing of Cisco IOS, IOS XE, ASA, and FTD. Exploitation via crafted IKEv2 packets can cause IOS/IOS XE devices to reload; ASA/FTD may partially exhaust memory leading to instability and inability t...
Exploit for Improper Authentication in Microsoft
CVE-2020-0688-Scanner Quick C tool for checking CVE-2020-068...
Cisco IOS XE Software Internet Key Exchange Version 2 (IKEv2) Denial of Service (cisco-sa-20140326-ikev2)
According to its self-reported version, the version of Cisco IOS XE running on the remote host is affected by a denial of service vulnerability in the Internet Key Exchange Version 2 IKEv2 module. An unauthenticated, remote attacker could potentially exploit this issue by sending a malformed IKEv...
CVE-2005-3733
Technical details for CVE-2005-3733 are not publicly provided in the connected documents. The sources reference related CVEs (CVE-2005-3666/3667/3668/3732) but do not specify Juniper JUNOS/E-series specifics or IKEv1 conditions for this CVE.
CVE-2005-3666
Technical details (affected implementations, exact root cause, impact, and fixes for CVE-2005-3666) are not publicly available in the provided documents. Monitor for updates as new information becomes available.