Strongswan » Strongswan » 2.6.1 : Security Vulnerabilities, CVEs, (Overflow) CVSS score >= 5
The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate.
Max CVSS
7.5
EPSS Score
1.46%
Published
2018-10-03
Updated
2019-12-01
Buffer overflow in the atodn function in strongSwan 2.0.0 through 4.3.4, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service (pluto IKE daemon crash) and possibly execute arbitrary code via crafted DNS TXT records. NOTE: this might be the same vulnerability as CVE-2013-2053 and CVE-2013-2054.
Max CVSS
5.1
EPSS Score
5.87%
Published
2013-07-09
Updated
2023-02-13
2 vulnerabilities found