Known Vulnerabilities for products from Strongswan
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Strongswan".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-26463 json | strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution because it uses a variable named "public" for two differe... | 9.8 - CRITICAL | 2023-04-15 | 2023-05-17 |
| CVE-2022-40617 json | strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted en... | 7.5 - HIGH | 2022-10-31 | 2023-11-07 |
| CVE-2021-45079 json | In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early without actually authenticating t... | 9.1 - CRITICAL | 2022-01-31 | 2023-11-07 |
| CVE-2021-41991 json | The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with di... | 7.5 - HIGH | 2021-10-18 | 2023-11-07 |
| CVE-2021-41990 json | The gmp plugin in strongSwan before 5.9.4 has a remote integer overflow via a crafted certificate with an RSASSA-PSS signatur... | 7.5 - HIGH | 2021-10-18 | 2023-11-07 |
| CVE-2019-10155 json | The Libreswan Project has found a vulnerability in the processing of IKEv1 informational exchange packets which are encrypted... | 3.1 - LOW | 2019-06-12 | 2023-11-07 |
| CVE-2018-17540 json | The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate. | 7.5 - HIGH | 2018-10-03 | 2023-11-07 |
| CVE-2018-16152 json | In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA im... | 7.5 - HIGH | 2018-09-26 | 2023-11-07 |
| CVE-2018-16151 json | In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA im... | 7.5 - HIGH | 2018-09-26 | 2023-11-07 |
| CVE-2018-10811 json | strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable. | 7.5 - HIGH | 2018-06-19 | 2023-11-07 |
| CVE-2018-6459 json | The rsa_pss_params_parse function in libstrongswan/credentials/keys/signature_params.c in strongSwan 5.6.1 allows remote atta... | 5.3 - MEDIUM | 2018-02-20 | 2023-11-07 |
| CVE-2018-5388 json | In stroke_socket.c in strongSwan before 5.6.3, a missing packet length check could allow a buffer underflow, which may lead t... | 6.5 - MEDIUM | 2018-05-31 | 2023-11-07 |
| CVE-2017-11185 json | The gmp plugin in strongSwan before 5.6.0 allows remote attackers to cause a denial of service (NULL pointer dereference and ... | 7.5 - HIGH | 2017-08-18 | 2023-11-07 |
| CVE-2017-9023 json | The ASN.1 parser in strongSwan before 5.5.3 improperly handles CHOICE types when the x509 plugin is enabled, which allows rem... | 7.5 - HIGH | 2017-06-08 | 2023-11-07 |
| CVE-2017-9022 json | The gmp plugin in strongSwan before 5.5.3 does not properly validate RSA public keys before calling mpz_powm_sec, which allow... | 7.5 - HIGH | 2017-06-08 | 2023-11-07 |
| CVE-2015-8023 json | The server implementation of the EAP-MSCHAPv2 protocol in the eap-mschapv2 plugin in strongSwan 4.2.12 through 5.x before 5.3... | 5 - MEDIUM | 2015-11-18 | 2023-11-07 |
| CVE-2015-4171 json | strongSwan 4.3.0 through 5.x before 5.3.2 and strongSwan VPN Client before 1.4.6, when using EAP or pre-shared keys for authe... | 2.6 - LOW | 2015-06-10 | 2017-11-08 |
| CVE-2015-3991 json | strongSwan 5.2.2 and 5.3.0 allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code. | 9.8 - CRITICAL | 2017-09-07 | 2023-11-07 |
| CVE-2014-9221 json | strongSwan 4.5.x through 5.2.x before 5.2.1 allows remote attackers to cause a denial of service (invalid pointer dereference... | 5 - MEDIUM | 2015-01-07 | 2023-11-07 |
| CVE-2014-2891 json | strongSwan before 5.1.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon crash) ... | 5 - MEDIUM | 2014-05-07 | 2023-11-07 |
Known software with vulnerabilities from Strongswan
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Strongswan | Davici | 0.1 |
| Application | Strongswan | Strongswan | 2.0.0 |
| Application | Strongswan | Strongswan Vpn Client | 1.4.5 |