Lucene search
K

18 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-33801

Malicious code in bioql PyPI...

7.5CVSS6.8AI score0.01581EPSS
Exploits0References4
redhatcve
redhatcve
added 2025/07/23 12:57 a.m.10 views

CVE-2025-44647

In TRENDnet TEW-WLC100P 2.03b03, the idontcareaboutsecurityanduseaggressivemodepsk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK...

7.3CVSS7.1AI score0.00288EPSS
Exploits0References1
nvd
nvd
added 2025/07/21 4:15 p.m.5 views

CVE-2025-44647

In TRENDnet TEW-WLC100P 2.03b03, the idontcareaboutsecurityanduseaggressivemodepsk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK...

7.3CVSS0.00288EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/07/21 12:0 a.m.3 views

PT-2025-30291 · Unknown +1 · Strongswan +1

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-WLC100P version 2.03b03 Description: The i dont care about security and use aggressive mode psk option is enabled in the strongSwan configuration file, allowing IKE Responders to use IKEv1 Aggressive Mode with Pre-Shared Keys. Th...

7.3CVSS6.5AI score0.00288EPSS
Exploits0References8
cvelist
cvelist
added 2025/07/21 12:0 a.m.9 views

CVE-2025-44647

In TRENDnet TEW-WLC100P 2.03b03, the idontcareaboutsecurityanduseaggressivemodepsk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK...

0.00288EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/07/21 12:0 a.m.4 views

CVE-2025-44647

In TRENDnet TEW-WLC100P 2.03b03, the idontcareaboutsecurityanduseaggressivemodepsk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK...

7.1AI score0.00288EPSS
Exploits0References2
redhat
redhat
added 2025/01/02 6:44 p.m.5 views

libreswan: Regression of CVE-2023-30570 fixes in the Red Hat Enterprise Linux

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01581EPSS
Exploits0References4
nessus
nessus
added 2024/02/29 12:0 a.m.23 views

CentOS 9 : libreswan-4.9-4.el9

The remote CentOS Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the libreswan-4.9-4.el9 build changelog. - remote DoS via crafted TS payload with an incorrect selector length rhbz2173674 CVE-2023-23009 - pluto in Libreswan before 4.11 allows a...

7.5CVSS6.8AI score0.01606EPSS
Exploits1References3
osv
osv
added 2023/05/29 12:15 a.m.4 views

AZL-34934 CVE-2023-30570 affecting package libreswan for versions less than 4.15-1

pluto in Libreswan before 4.11 allows a denial of service responder SPI mishandling and daemon crash via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28...

7.5CVSS6.6AI score0.01175EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2023/05/29 12:15 a.m.25 views

CVE-2023-30570

pluto in Libreswan before 4.11 allows a denial of service responder SPI mishandling and daemon crash via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References3
cve
cve
added 2023/05/28 12:0 a.m.154 views

CVE-2023-30570

Libreswan (pluto) vulnerabilities exist in versions before 4.11, caused by an IKEv1 Aggressive Mode handling that can crash the pluto daemon and cause a denial of service. The earliest affected release is 3.28. Multiple advisories and CVE coverage confirm the issue, with fixes available in later ...

7.5CVSS7.2AI score0.01175EPSS
Exploits0References1Affected Software1
alpinelinux
alpinelinux
added 2023/05/28 12:0 a.m.26 views

CVE-2023-30570

pluto in Libreswan before 4.11 allows a denial of service responder SPI mishandling and daemon crash via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28...

7.5CVSS7.5AI score0.01175EPSS
Exploits0
nessus
nessus
added 2023/05/24 12:0 a.m.27 views

Oracle Linux 8 : libreswan (ELSA-2023-3107)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-3107 advisory. - Fix CVE-2023-30570: Malicious IKEv1 Aggressive Mode packets can crash libreswan Tenable has extracted the preceding description block directly from the Oracle...

7.5CVSS6.8AI score0.01581EPSS
Exploits0References2
nessus
nessus
added 2023/05/18 12:0 a.m.28 views

Rocky Linux 8 : libreswan (RLSA-2023:3107)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:3107 advisory. - A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto...

7.5CVSS7.5AI score0.01581EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2023/05/17 12:0 a.m.6 views

CVE-2023-2295

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

8AI score0.01581EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2023/05/17 12:0 a.m.39 views

CVE-2023-2295

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS7.3AI score0.01581EPSS
Exploits0References2
nessus
nessus
added 2023/05/17 12:0 a.m.35 views

Oracle Linux 9 : libreswan (ELSA-2023-3148)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-3148 advisory. - Fix CVE-2023-30570:Malicious IKEv1 Aggressive Mode packets can crash libreswan Tenable has extracted the preceding description block directly from the Oracle...

7.5CVSS6.8AI score0.01581EPSS
Exploits0References2
redhat
redhat
added 2023/05/16 7:43 p.m.6 views

libreswan: Regression of CVE-2023-30570 fixes in the Red Hat Enterprise Linux

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01581EPSS
Exploits0References4
Rows per page
Query Builder