Lucene search
K

2812 matches found

Cisco
Cisco
added 2015/06/16 8:43 p.m.26 views

Cisco Adaptive Security Appliance Encrypted IPSec or IKEv2 Packet Modification Vulnerability

A vulnerability in the AES-GCM code of Cisco Adaptive Security Appliance ASA could allow an unauthenticated, remote attacker to modify the contents of an encrypted IPSec or IKEv2 packet, and for those modifications not to be detected. The vulnerability is due to an error on the firmware of the...

4.3CVSS6.2AI score0.0129EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/06/15 12:0 a.m.33 views

Debian DLA-244-1 : strongswan security update

Alexander E. Patrakov discovered an issue in strongSwan, an IKE/IPsec suite used to establish IPsec protected links. When a client authenticate the server with certificates and the client authenticates using pre-shared key or EAP, the constraints on the server certificate are only enforced by the...

2.6CVSS7.8AI score0.02028EPSS
Exploits0References3
Fedora
Fedora
added 2015/06/14 5:24 p.m.56 views

[SECURITY] Fedora 20 Update: libreswan-3.13-1.fc20

Libreswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the...

5CVSS1.3AI score0.02644EPSS
Exploits3
NVD
NVD
added 2015/06/12 10:59 a.m.14 views

CVE-2015-0771

The IKE implementation in the WS-IPSEC-3 service module in Cisco IOS 12.2 on Catalyst 6500 devices allows remote authenticated users to cause a denial of service device reload by sending a crafted message during IPsec tunnel setup, aka Bug ID CSCur70505...

6.3CVSS6.2AI score0.02422EPSS
Exploits0References2
Prion
Prion
added 2015/06/12 10:59 a.m.18 views

Code injection

The IKE implementation in the WS-IPSEC-3 service module in Cisco IOS 12.2 on Catalyst 6500 devices allows remote authenticated users to cause a denial of service device reload by sending a crafted message during IPsec tunnel setup, aka Bug ID CSCur70505...

6.3CVSS6.8AI score0.02422EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/06/12 10:0 a.m.21 views

CVE-2015-0771

The IKE implementation in the WS-IPSEC-3 service module in Cisco IOS 12.2 on Catalyst 6500 devices allows remote authenticated users to cause a denial of service device reload by sending a crafted message during IPsec tunnel setup, aka Bug ID CSCur70505...

6.2AI score0.02422EPSS
Exploits0References2
OSV
OSV
added 2015/06/11 12:0 a.m.23 views

DLA-244-1 strongswan - security update

Bulletin has no description...

2.6CVSS7.5AI score0.02028EPSS
Exploits0
Fedora
Fedora
added 2015/06/10 7:11 p.m.30 views

[SECURITY] Fedora 22 Update: libreswan-3.13-1.fc22

Libreswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the...

5CVSS1.3AI score0.02595EPSS
Exploits0
Fedora
Fedora
added 2015/06/10 7:8 p.m.27 views

[SECURITY] Fedora 21 Update: libreswan-3.13-1.fc21

Libreswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the...

5CVSS1.3AI score0.02595EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2015/06/09 2:47 p.m.5 views

Kernel: crypto: buffer overruns in RFC4106 implementation using AESNI

A buffer overflow flaw was found in the way the Linux kernel's Intel AES-NI instructions optimized version of the RFC4106 GCM mode decryption functionality handled fragmented packets. A remote attacker could use this flaw to crash, or potentially escalate their privileges on, a system over a...

9.3CVSS6.8AI score0.10108EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/06/09 12:0 a.m.25 views

Fedora 20 : ipsec-tools-0.8.2-1.fc20 (2015-8968)

Upgraded to 0.8.2, fix for CVE-2015-4047, support for Calling-Station-Id Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.8CVSS7.2AI score0.09877EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2015/06/09 12:0 a.m.34 views

Debian DSA-3282-1 : strongswan - security update

Alexander E. Patrakov discovered an issue in strongSwan, an IKE/IPsec suite used to establish IPsec protected links. When an IKEv2 client authenticates the server with certificates and the client authenticates itself to the server using pre-shared key or EAP, the constraints on the server...

2.6CVSS7.8AI score0.02028EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/06/09 12:0 a.m.24 views

Fedora 21 : ipsec-tools-0.8.2-1.fc21 (2015-8948)

Upgraded to 0.8.2, fix for CVE-2015-4047, support for Calling-Station-Id Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.8CVSS7.2AI score0.09877EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-2623-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.09877EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.20 views

Fedora Update for ipsec-tools FEDORA-2015-8948

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.09877EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.32 views

Fedora Update for ipsec-tools FEDORA-2015-8968

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.09877EPSS
Exploits1References2
Mageia
Mageia
added 2015/06/08 9:17 p.m.25 views

Updated ipsec-tools packages fix CVE-2015-4047

Updated ipsec-tools packages fix security vulnerability: Javantea discovered a NULL pointer dereference flaw in racoon, the Internet Key Exchange daemon of ipsec-tools. A remote attacker can use this flaw to cause the IKE daemon to crash via specially crafted UDP packets, resulting in a denial of...

7.8CVSS6.2AI score0.09877EPSS
Exploits1References2
OSV
OSV
added 2015/06/08 9:17 p.m.5 views

MGASA-2015-0243 Updated ipsec-tools packages fix CVE-2015-4047

Updated ipsec-tools packages fix security vulnerability: Javantea discovered a NULL pointer dereference flaw in racoon, the Internet Key Exchange daemon of ipsec-tools. A remote attacker can use this flaw to cause the IKE daemon to crash via specially crafted UDP packets, resulting in a denial of...

7.8CVSS6.3AI score0.09877EPSS
Exploits1References3
Cisco
Cisco
added 2015/06/08 9:16 p.m.24 views

Cisco Catalyst 6500 Series Switches IPsec Tunnel Handling Denial of Service Vulnerability

A vulnerability in the Internet Key Exchange IKE subsystem of the Cisco WS-IPSEC-3 service module could allow an authenticated, remote attacker to cause a reload of the Catalyst switch. The vulnerability is due to insufficient bounds checks on a specific message during the establishment of an IPs...

6.3CVSS6.2AI score0.02422EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2015/06/08 4:48 p.m.49 views

USN-2628-1: strongSwan vulnerability

Alexander E. Patrakov discovered that strongSwan incorrectly handled certain IKEv2 setups. A malicious server could possibly use this issue to obtain user credentials...

2.6CVSS7.8AI score0.02028EPSS
Exploits0
Rows per page
Query Builder