CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

BDU FSTEC•added 2024/09/23 12:0 a.m.•5 views

The vulnerability of the StrongSwan client’s revocation VPN plugin, related to uncontrolled resource consumption, allows a violator to trigger a service failure.

The vulnerability of the StrongSwan client’s revocation VPN plugin is related to an uncontrolled resource consumption. Exploiting this vulnerability allows a malicious actor, operating remotely, to cause service interruptions...

7.8CVSS7.2AI score0.01634EPSS

Exploits0References7Affected Software3

Tenable Nessus•added 2024/05/04 12:0 a.m.•23 views

GLSA-202405-08 : strongSwan: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202405-08 strongSwan: Multiple Vulnerabilities - The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with different certificates to fill the cache and later trigger...

9.8CVSS8.1AI score0.04804EPSS

Exploits0References9

Tenable Nessus•added 2022/12/22 12:0 a.m.•36 views

Fedora 36 : strongswan (2022-11bf2b2597)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-11bf2b2597 advisory. Resolves CVE-2022-40617 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

Tenable Nessus•added 2022/11/24 12:0 a.m.•27 views

SUSE SLED15: strongswan / strongswan-doc / strongswan-hmac / strongswan-ipsec / etc (SUSE-SU-2022:4197-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4197-1 advisory. Security issues fixed: - CVE-2022-40617: Fixed that using untrusted URIs for revocation checking could le...

7.5CVSS7.2AI score0.01634EPSS

Exploits0References4

Microsoft CVE•added 2022/11/09 8:0 a.m.•2 views

strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing after the initial TCP handshake or sends an excessive amount of application data.

...

7.5CVSS7.7AI score0.01634EPSS

OSV•added 2022/11/03 11:4 a.m.•2 views

OESA-2022-2034 strongswan security update

The strongSwan IPsec implementation supports both the IKEv1 and IKEv2 key exchange protocols in conjunction with the native NETKEY IPsec stack of the Linux kernel. Security Fixes: strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a...

7.5CVSS6.4AI score0.01634EPSS

NVD•added 2022/10/31 6:15 a.m.•21 views

CVE-2022-40617

strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity and intermediate CA certificate that contains a CRL/OCSP URL that points to a server under the attacker's control that doesn't properly respond but for example jus...

7.5CVSS0.01634EPSS

OSV•added 2022/10/31 6:15 a.m.•1 views

ALPINE-CVE-2022-40617

7.5CVSS6.8AI score0.01634EPSS

Exploits0References1

OSV•added 2022/10/31 6:15 a.m.•0 views

DEBIAN-CVE-2022-40617

OSV•added 2022/10/31 6:15 a.m.•4 views

Exploits0References1

AZL-11398 CVE-2022-40617 affecting package strongswan for versions less than 5.9.8-1

7.5CVSS5.8AI score0.01634EPSS

Exploits0References1

OSV•added 2022/10/31 6:15 a.m.•67 views

CVE-2022-40617

7.5CVSS5.3AI score

Prion•added 2022/10/31 6:15 a.m.•26 views

Code injection

5CVSS7.1AI score0.01634EPSS

Exploits0References2Affected Software5

Vulnrichment•added 2022/10/31 12:0 a.m.•6 views

CVE-2022-40617

7.3AI score0.01634EPSS

AlpineLinux•added 2022/10/31 12:0 a.m.•34 views

CVE-2022-40617

7.5CVSS7.4AI score0.01634EPSS

Cvelist•added 2022/10/31 12:0 a.m.•37 views

CVE-2022-40617

7.5AI score0.01634EPSS

CVE•added 2022/10/31 12:0 a.m.•178 views

CVE-2022-40617

strongSwan before 5.9.8 is affected by a denial-of-service in the revocation plugin when processing a crafted end-entity certificate containing a CRL/OCSP URL pointing to an attacker‑controlled server that does not respond or misbehaves. This is documented across multiple advisories (Linux distri...

7.5CVSS7.1AI score0.01634EPSS

Exploits0References2Affected Software1

Debian CVE•added 2022/10/31 12:0 a.m.•32 views

CVE-2022-40617

7.5CVSS7.4AI score0.01634EPSS

Debian•added 2022/10/06 4:7 p.m.•39 views

[SECURITY] [DSA 5249-1] strongswan security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5249-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez October 06, 2022 https://www.debian.org/security/faq -...

Tenable Nessus•added 2022/10/05 12:0 a.m.•94 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : strongSwan vulnerability (USN-5651-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5651-1 advisory. Lahav Schlesinger discovered that strongSwan incorrectly handled certain OCSP URIs and and CRL distribution points CDP in certificates. A...