Known Vulnerabilities for products from Openswan
Listed below are 6 of the newest known vulnerabilities associated with the vendor "Openswan".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2011-2147 | Openswan 2.2.x does not properly restrict permissions for (1) /var/run/starter.pid, related to starter.c in the IPsec starter... | 3.6 - LOW | 2011-05-20 | 2017-08-29 |
| CVE-2008-4966 | linux-patch-openswan 2.4.12 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/snap##### and (b... | 6.9 - MEDIUM | 2008-11-06 | 2017-08-08 |
| CVE-2008-4190 | The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary f... | 4.4 - MEDIUM | 2008-09-24 | 2019-07-29 |
| CVE-2005-3671 | The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINU... | 7.8 - HIGH | 2005-11-18 | 2019-07-29 |
| CVE-2005-0162 | Stack-based buffer overflow in the get_internal_addresses function in the pluto application for Openswan 1.x before 1.0.9, an... | 7.2 - HIGH | 2005-01-26 | 2019-07-29 |
| CVE-2004-0590 | FreeS/WAN 1.x and 2.x, and other related products including superfreeswan 1.x, openswan 1.x before 1.0.6, openswan 2.x before... | 10 - HIGH | 2004-12-06 | 2017-07-11 |
Known software with vulnerabilities from Openswan
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Openswan | Openswan | 2.3.0 |