Known Vulnerabilities for products from Openswan
Listed below are 6 of the newest known vulnerabilities associated with the vendor "Openswan".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2011-2147 json | Openswan 2.2.x does not properly restrict permissions for (1) /var/run/starter.pid, related to starter.c in the IPsec starter... | 3.6 - LOW | 2011-05-20 | 2017-08-29 |
| CVE-2008-4966 json | linux-patch-openswan 2.4.12 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/snap##### and (b... | Not Provided | 2008-11-06 | 2026-04-23 |
| CVE-2008-4190 json | The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary f... | Not Provided | 2008-09-24 | 2026-04-23 |
| CVE-2005-3671 json | The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINU... | Not Provided | 2005-11-18 | 2025-04-03 |
| CVE-2005-0162 json | Stack-based buffer overflow in the get_internal_addresses function in the pluto application for Openswan 1.x before 1.0.9, an... | Not Provided | 2005-01-26 | 2025-04-03 |
| CVE-2004-0590 json | FreeS/WAN 1.x and 2.x, and other related products including superfreeswan 1.x, openswan 1.x before 1.0.6, openswan 2.x before... | Not Provided | 2004-12-06 | 2025-04-03 |
Known software with vulnerabilities from Openswan
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Openswan | Openswan | 2.3.0 |