Known Vulnerabilities for Openswan by Xelerance
Listed below are 10 of the newest known vulnerabilities associated with "Openswan" by "Xelerance".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-10155 | The Libreswan Project has found a vulnerability in the processing of IKEv1 informational exchange packets which are encrypted... | 3.1 - LOW | 2019-06-12 | 2023-11-07 |
| CVE-2018-15836 | In verify_signed_hash() in lib/liboswkeys/signatures.c in Openswan before 2.6.50.1, the RSA implementation does not verify th... | 7.5 - HIGH | 2018-09-26 | 2019-01-10 |
| CVE-2014-2037 | Openswan 2.6.40 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon restart) via IK... | 5 - MEDIUM | 2014-11-26 | 2019-07-29 |
| CVE-2013-6466 | Openswan 2.6.39 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon res... | 5 - MEDIUM | 2014-01-26 | 2019-07-29 |
| CVE-2013-2053 | Buffer overflow in the atodn function in Openswan before 2.6.39, when Opportunistic Encryption is enabled and an RSA key is b... | 6.8 - MEDIUM | 2013-07-09 | 2023-11-07 |
| CVE-2011-4073 | Use-after-free vulnerability in the cryptographic helper handler functionality in Openswan 2.3.0 through 2.6.36 allows remote... | 4 - MEDIUM | 2011-11-17 | 2019-07-29 |
| CVE-2011-3380 | Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE d... | 5 - MEDIUM | 2011-11-17 | 2019-07-29 |
| CVE-2010-3752 | programs/pluto/xauth.c in the client in Openswan 2.6.25 through 2.6.28 allows remote authenticated gateways to execute arbitr... | 6.5 - MEDIUM | 2010-10-05 | 2019-07-29 |
| CVE-2010-3308 | Buffer overflow in programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 might allow remote authenticated ga... | 6.5 - MEDIUM | 2010-10-05 | 2023-02-13 |
| CVE-2010-3302 | Buffer overflow in programs/pluto/xauth.c in the client in Openswan 2.6.25 through 2.6.28 might allow remote authenticated ga... | 6.5 - MEDIUM | 2010-10-05 | 2023-02-13 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Xelerance | Openswan | 3.0.14 | All | All | All |
| Application | Xelerance | Openswan | 3.0.13 | All | All | All |
| Application | Xelerance | Openswan | 3.0.12 | All | All | All |
| Application | Xelerance | Openswan | 3.0.07 | All | All | All |
| Application | Xelerance | Openswan | 3.0.06 | All | All | All |
| Application | Xelerance | Openswan | 3.0.04 | All | All | All |
| Application | Xelerance | Openswan | 3.0.03 | All | All | All |
| Application | Xelerance | Openswan | 3.0.02 | All | All | All |
| Application | Xelerance | Openswan | 2.6.52 | dev1 | All | All |
| Application | Xelerance | Openswan | 2.6.51.5 | All | All | All |
| Application | Xelerance | Openswan | 2.6.51.4 | All | All | All |
| Application | Xelerance | Openswan | 2.6.51.3 | All | All | All |
| Application | Xelerance | Openswan | 2.6.51.2 | All | All | All |
| Application | Xelerance | Openswan | 2.6.51.1 | All | All | All |
| Application | Xelerance | Openswan | 2.6.51 | All | All | All |
| Application | Xelerance | Openswan | 2.6.50.1 | All | All | All |
| Application | Xelerance | Openswan | 2.6.50 | All | All | All |
| Application | Xelerance | Openswan | 2.6.49.1 | All | All | All |
| Application | Xelerance | Openswan | 2.6.49 | All | All | All |
| Application | Xelerance | Openswan | 2.6.48 | All | All | All |