Lucene search
Veracode Vulnerability DatabaseVERACODE:42861HistoryAug 21, 2023 - 5:33 a.m.
NULL Pointer Dereference
2023-08-2105:33:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
libreswan
vulnerability
ikev1
delete/notify
packet
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
13.3%
libreswan is vulnerable to NULL Pointer Dereference. The vulnerability occurs when a malformed IKEv1 Delete/Notify packet is received resulting in a crash or denial of service if sent continuously.
Related
cvelist
cvelist
CVE-2023-38712
2023-08-25 00:00:00
ubuntucve
ubuntucve
CVE-2023-38712
2023-08-25 00:00:00
cve
cve
CVE-2023-38712
2023-08-25 21:15:08
alpinelinux
alpinelinux
CVE-2023-38712
2023-08-25 21:15:08
osv
osv
CVE-2023-38712
2023-08-25 21:15:08
Moderate: libreswan security update
2023-11-14 00:00:00
Moderate: libreswan security update
2023-11-07 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-38712 affecting package libreswan for versions less than 4.7-6
2024-03-19 17:21:46
CVE-2023-38712 affecting package libreswan for versions less than 4.7-5
2023-09-13 02:10:38
nvd
nvd
CVE-2023-38712
2023-08-25 21:15:08
redhatcve
redhatcve
CVE-2023-38712
2023-08-09 05:49:39
debiancve
debiancve
CVE-2023-38712
2023-08-25 21:15:08
prion
prion
Null pointer dereference
2023-08-25 21:15:00
amazon
amazon
Medium: libreswan
2023-10-12 15:09:00
nessus
nessus
Amazon Linux 2 : libreswan (ALAS-2023-2299)
2023-10-20 00:00:00
Fedora 37 : libreswan (2023-dbc6d8a124)
2023-08-20 00:00:00
Oracle Linux 8 : libreswan (ELSA-2023-7052)
2023-11-21 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: libreswan-4.12-1.fc38
2023-08-20 00:49:12
[SECURITY] Fedora 37 Update: libreswan-4.12-1.fc37
2023-08-20 00:45:09
redhat
redhat
(RHSA-2023:6549) Moderate: libreswan security update
2023-11-07 06:08:30
(RHSA-2023:7052) Moderate: libreswan security update
2023-11-14 08:43:55
oraclelinux
oraclelinux
libreswan security update
2023-11-17 00:00:00
libreswan security update
2023-11-11 00:00:00
almalinux
almalinux
Moderate: libreswan security update
2023-11-07 00:00:00
Moderate: libreswan security update
2023-11-14 00:00:00
openvas
openvas
Fedora: Security Advisory for libreswan (FEDORA-2023-dbc6d8a124)
2023-08-20 00:00:00
Fedora: Security Advisory for libreswan (FEDORA-2023-ddd6e6b49b)
2023-08-20 00:00:00
Mageia: Security Advisory (MGASA-2024-0085)
2024-04-05 00:00:00
redos
redos
ROS-20230913-03
2023-09-13 00:00:00
mageia
mageia
Updated libreswan packages fix security vulnerabilities
2024-03-24 07:57:19
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
13.3%
Related for VERACODE:42861