2 matches found
CVE-2025-24356
The CVE-2025-24356 affects the fastd VPN daemon. When fastd receives a data packet from an unknown IP/port, it may assume a peer moved and trigger a fast-reconnect handshake (~150 bytes of UDP payload), creating an amplification factor of about 12–13 for UDP traffic. This can be exploited by spoo...
CVE-2020-27638
CVE-2020-27638 affects the fastd daemon. The issue is in receive handling in receive.c where packets with an invalid type code trigger an assertion failure, causing a denial of service. Affected software is fastd prior to version 21. The vulnerability’s impact is an availability disruption (parti...