5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.013 Low
EPSS
Percentile
85.7%
Openswan 2.6.40 allows remote attackers to cause a denial of service (NULL
pointer dereference and IKE daemon restart) via IKEv2 packets that lack
expected payloads. NOTE: this vulnerability exists because of an
incomplete fix for CVE 2013-6466.
Author | Note |
---|---|
seth-arnold | Ubuntu is not strictly affected as CVE-2013-6466 is unpatched as of 2014-02-21 |