11 matches found
EUVD-2015-3270
Malware in sbrugna...
EUVD-2015-6370
Malware in sbrugna...
EUVD-2022-28199
Malicious code in bioql PyPI...
PT-2024-5089 · Cisco · Cisco Ios Xe +1
Name of the Vulnerable Software and Affected Versions: Cisco IOS and Cisco IOS XE Software affected versions not specified Description: A vulnerability in the IKEv1 fragmentation code could allow an unauthenticated, remote attacker to cause a heap underflow or corruption, resulting in an affected...
Rockwell Automation Stratix 5900 Exposure of Sensitive Information to an Unauthorized Actor (CVE-2016-6415)
A vulnerability in Internet Key Exchange version 1 IKEv1 packet processing code in Cisco IOS, Cisco IOS XE, and Cisco IOS XR Software could allow an unauthenticated, remote attacker to retrieve memory contents, which could lead to the disclosure of confidential information. The vulnerability is d...
Rocky Linux 8 : libreswan (RLSA-2022:0199)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:0199 advisory. - Libreswan 4.2 through 4.5 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted IKEv1 packet because...
Updated libreswan packages fix security vulnerability
Libreswan 4.2 through 4.5 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted IKEv1 packet because pluto/ikev1.c wrongly expects that a state object exists. CVE-2022-23094...
libreswan security update
An update is available for libreswan. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the...
Important: libreswan security update
Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks such as virtual private network VPN...
CVE-2022-23094
Summary (CVE-2022-23094) Libreswan versions 4.2–4.5 are affected by a denial-of-service issue triggered by a malformed IKEv1 packet, caused by pluto/ikev1.c assuming a state object exists. This can lead to a NULL pointer dereference and daemon crash. The issue is fixed in version 4.6. Impact and ...
CVE-2015-3204
libreswan 3.9 through 3.12 allows remote attackers to cause a denial of service daemon restart via an IKEv1 packet with 1 unassigned bits set in the IPSEC DOI value or 2 the next payload value set to ISAKMPNEXTSAK...