Known Vulnerabilities for products from Libreswan

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Libreswan".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2023-38712 json An issue was discovered in Libreswan 3.x and 4.x before 4.12. When an IKEv1 ISAKMP SA Informational Exchange packet contains ... 7.5 - HIGH 2023-08-25 2023-08-31
CVE-2023-38711 json An issue was discovered in Libreswan before 4.12. When an IKEv1 Quick Mode connection configured with ID_IPV4_ADDR or ID_IPV6... 7.5 - HIGH 2023-08-25 2023-08-31
CVE-2023-38710 json An issue was discovered in Libreswan before 4.12. When an IKEv2 Child SA REKEY packet contains an invalid IPsec protocol ID n... 7.5 - HIGH 2023-08-25 2023-08-31
CVE-2023-30570 json pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IK... 7.5 - HIGH 2023-05-29 2023-06-03
CVE-2023-23009 json Libreswan 4.9 allows remote attackers to cause a denial of service (assert failure and daemon restart) via crafted TS payload... 6.5 - MEDIUM 2023-02-21 2023-11-07
CVE-2023-2295 json A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is receiv... 7.5 - HIGH 2023-05-17 2023-05-25
CVE-2022-23094 json Libreswan 4.2 through 4.5 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) vi... 7.5 - HIGH 2022-01-15 2023-11-07
CVE-2020-1763 json An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan from versions 3.27 till 3.31 where, an unauthent... 7.5 - HIGH 2020-05-12 2023-11-07
CVE-2019-12312 json In Libreswan 3.27 an assertion failure can lead to a pluto IKE daemon restart. An attacker can trigger a NULL pointer derefer... 7.5 - HIGH 2019-05-24 2020-08-24
CVE-2019-10155 json The Libreswan Project has found a vulnerability in the processing of IKEv1 informational exchange packets which are encrypted... 3.1 - LOW 2019-06-12 2023-11-07
CVE-2016-5391 json libreswan before 3.18 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto daemon restart... Not Provided 2017-06-13 2025-04-20
CVE-2016-5361 json programs/pluto/ikev1.c in libreswan before 3.17 retransmits in initial-responder states, which allows remote attackers to cau... Not Provided 2016-06-16 2026-05-06
CVE-2016-3071 json Libreswan 3.16 might allow remote attackers to cause a denial of service (daemon restart) via an IKEv2 aes_xcbc transform. Not Provided 2016-04-18 2026-05-06
CVE-2015-3240 json The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cau... Not Provided 2015-11-09 2026-05-06
CVE-2015-3204 json libreswan 3.9 through 3.12 allows remote attackers to cause a denial of service (daemon restart) via an IKEv1 packet with (1)... Not Provided 2015-07-01 2026-05-06
CVE-2013-7294 json The ikev2parent_inI1outR1 function in pluto/ikev2_parent.c in libreswan before 3.7 allows remote attackers to cause a denial ... Not Provided 2014-01-16 2026-04-29
CVE-2013-7283 json Race condition in the libreswan.spec files for Red Hat Enterprise Linux (RHEL) and Fedora packages in libreswan 3.6 has unspe... Not Provided 2014-01-09 2026-04-29
CVE-2013-6467 json Libreswan 3.7 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon resta... Not Provided 2014-01-26 2026-04-29
CVE-2013-4564 json Libreswan 3.6 allows remote attackers to cause a denial of service (crash) via a small length value and (1) no version or (2)... Not Provided 2014-01-07 2026-04-29
CVE-2013-2052 json Buffer overflow in the atodn function in libreswan 3.0 and 3.1, when Opportunistic Encryption is enabled and an RSA key is be... Not Provided 2013-07-09 2026-04-29
Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from Libreswan

Type Vendor Product Version
ApplicationLibreswanLibreswan3.0
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report