This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:strongswan:strongswan
Detail
VendorStrongswanFirst view 2004-12-06
ProductStrongswanLast view2015-11-18
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:strongswan:strongswan:4.2.010
cpe:/a:strongswan:strongswan:4.2.110
cpe:/a:strongswan:strongswan:4.2.1210
cpe:/a:strongswan:strongswan:4.2.1310
cpe:/a:strongswan:strongswan:4.2.210
Hide | Show 45 More...
CPE NameAffected CVE
cpe:/a:strongswan:strongswan:4.2.310
cpe:/a:strongswan:strongswan:4.3.010
cpe:/a:strongswan:strongswan:4.2.109
cpe:/a:strongswan:strongswan:4.2.119
cpe:/a:strongswan:strongswan:4.2.49
cpe:/a:strongswan:strongswan:4.2.59
cpe:/a:strongswan:strongswan:4.2.69
cpe:/a:strongswan:strongswan:4.3.19
cpe:/a:strongswan:strongswan:5.0.29
cpe:/a:strongswan:strongswan:2.8.08
cpe:/a:strongswan:strongswan:2.8.18
cpe:/a:strongswan:strongswan:2.8.28
cpe:/a:strongswan:strongswan:2.8.38
cpe:/a:strongswan:strongswan:2.8.48
cpe:/a:strongswan:strongswan:2.8.58
cpe:/a:strongswan:strongswan:2.8.68
cpe:/a:strongswan:strongswan:2.8.78
cpe:/a:strongswan:strongswan:2.8.88
cpe:/a:strongswan:strongswan:4.2.148
cpe:/a:strongswan:strongswan:4.2.158
cpe:/a:strongswan:strongswan:4.2.78
cpe:/a:strongswan:strongswan:4.2.88
cpe:/a:strongswan:strongswan:4.2.98
cpe:/a:strongswan:strongswan:4.3.28
cpe:/a:strongswan:strongswan:4.3.38
cpe:/a:strongswan:strongswan:4.3.48
cpe:/a:strongswan:strongswan:4.3.58
cpe:/a:strongswan:strongswan:4.3.68
cpe:/a:strongswan:strongswan:4.4.08
cpe:/a:strongswan:strongswan:4.5.08
cpe:/a:strongswan:strongswan:4.5.18
cpe:/a:strongswan:strongswan:4.5.28
cpe:/a:strongswan:strongswan:4.5.38
cpe:/a:strongswan:strongswan:4.6.08
cpe:/a:strongswan:strongswan:4.6.18
cpe:/a:strongswan:strongswan:4.6.28
cpe:/a:strongswan:strongswan:4.6.38
cpe:/a:strongswan:strongswan:5.0.08
cpe:/a:strongswan:strongswan:5.0.18
cpe:/a:strongswan:strongswan:5.0.38
cpe:/a:strongswan:strongswan:5.0.48
cpe:/a:strongswan:strongswan:2.8.107
cpe:/a:strongswan:strongswan:4.1.117
cpe:/a:strongswan:strongswan:4.2.167
cpe:/a:strongswan:strongswan:4.4.17

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
52015-11-18CVE-2015-8023NetworkLowNone Requ...
2.62015-06-10CVE-2015-4171NetworkHighNone Requ...
52015-01-07CVE-2014-9221NetworkLowNone Requ...
52014-05-07CVE-2014-2891NetworkLowNone Requ...
6.42014-04-16CVE-2014-2338NetworkLowNone Requ...
Hide | Show 14 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52013-11-02CVE-2013-6076NetworkLowNone Requ...
52013-11-02CVE-2013-6075NetworkLowNone Requ...
4.32013-08-28CVE-2013-5018NetworkMediumNone Requ...
5.12013-07-09CVE-2013-2054NetworkHighNone Requ...
4.92013-05-02CVE-2013-2944NetworkMediumRequires ...
7.52012-06-27CVE-2012-2388NetworkLowNone Requ...
7.52010-08-20CVE-2010-2628NetworkLowNone Requ...
52009-08-04CVE-2009-2661NetworkLowNone Requ...
52009-06-24CVE-2009-2185NetworkLowNone Requ...
52009-06-07CVE-2009-1958NetworkLowNone Requ...
52009-06-07CVE-2009-1957NetworkLowNone Requ...
52009-04-01CVE-2009-0790NetworkLowNone Requ...
52008-10-14CVE-2008-4551NetworkLowNone Requ...
102004-12-06CVE-2004-0590NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
17% (3)CWE-399Resource Management Errors
17% (3)CWE-287Improper Authentication
17% (3)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
17% (3)CWE-20Improper Input Validation
5% (1)CWE-310Cryptographic Issues
Hide | Show 4 More...
%idName
5% (1)CWE-264Permissions, Privileges, and Access Controls
5% (1)CWE-200Information Exposure
5% (1)CWE-94Failure to Control Generation of Code ('Code Injection')
5% (1)CWE-19Data Handling

Open Source Vulnerability Database (OSVDB)

idDescription
67148strongSwan snprintf() Function Certificate / Identification Payload Remote Co...
55421Openswan ASN.1 Parser Crafted X.509 Certificate Remote IKE Daemon DoS
55420strongSwan ASN.1 Parser Crafted X.509 Certificate RDN IKE Daemon Remote DoS
55047strongSwan charon Daemon charon/sa/tasks/child_create.c IKE_AUTH Request Hand...
55046strongSwan charon Daemon charon/sa/ike_sa.c IKE_SA_INIT Request Handling DoS
Hide | Show 4 More...
idDescription
53209Openswan Pluto IKE Daemon Dead Peer Detection NULL Dereference Remote DoS
53208strongSwan Pluto IKE Daemon Dead Peer Detection NULL Dereference Remote DoS
48410strongSwan IKEv2 charon Daemon Crafted IKE_SA_INIT Message Remote DoS
7281Swan Products X.509 Certificate Validation Bypass and DoS

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:0691-1 (update)
File : nvt/gb_suse_2012_0691_1.nasl
2012-08-30Name : Fedora Update for strongswan FEDORA-2012-8815
File : nvt/gb_fedora_2012_8815_strongswan_fc17.nasl
2012-06-11Name : Fedora Update for strongswan FEDORA-2012-8821
File : nvt/gb_fedora_2012_8821_strongswan_fc16.nasl
2012-05-31Name : Debian Security Advisory DSA 2483-1 (strongswan)
File : nvt/deb_2483_1.nasl
2011-08-09Name : CentOS Update for openswan CESA-2009:0402 centos5 i386
File : nvt/gb_CESA-2009_0402_openswan_centos5_i386.nasl
Hide | Show 20 More...
idDescription
2011-08-09Name : CentOS Update for openswan CESA-2009:1138 centos5 i386
File : nvt/gb_CESA-2009_1138_openswan_centos5_i386.nasl
2009-11-11Name : SuSE Security Summary SUSE-SR:2009:018
File : nvt/suse_sr_2009_018.nasl
2009-10-19Name : Mandrake Security Advisory MDVSA-2009:273 (strongswan)
File : nvt/mdksa_2009_273.nasl
2009-10-19Name : SuSE Security Summary SUSE-SR:2009:016
File : nvt/suse_sr_2009_016.nasl
2009-10-13Name : SLES10: Security update for openswan
File : nvt/sles10_openswan.nasl
2009-10-13Name : SLES10: Security update for openswan
File : nvt/sles10_openswan0.nasl
2009-10-13Name : SLES10: Security update for openswan
File : nvt/sles10_openswan1.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan0.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan1.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan2.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan3.nasl
2009-10-11Name : SLES11: Security update for openswan
File : nvt/sles11_openswan.nasl
2009-10-11Name : SLES11: Security update for openswan
File : nvt/sles11_openswan0.nasl
2009-10-11Name : SLES11: Security update for openswan
File : nvt/sles11_openswan1.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan0.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan1.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan2.nasl
2009-10-10Name : SLES9: Security update for freeswan
File : nvt/sles9p5053980.nasl

Snort® IPS/IDS

DateDescription
2014-01-10Openswan/Strongswan Pluto IKE daemon ISAKMP DPD malformed packet DOS attempt
RuleID : 21334 - Type : SERVER-WEBAPP - Revision : 2
2014-01-10Openswan/Strongswan Pluto IKE daemon ISAKMP DPD malformed packet DOS attempt
RuleID : 21333 - Type : SERVER-WEBAPP - Revision : 2
2014-01-10strongSwan Certificate and Identification payload overflow attempt
RuleID : 19182 - Type : SERVER-OTHER - Revision : 10

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2015-12-29Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-2183-2.nasl - Type : ACT_GATHER_INFO
2015-12-04Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-2183-1.nasl - Type : ACT_GATHER_INFO
2015-12-04Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-2186-1.nasl - Type : ACT_GATHER_INFO
2015-11-30Name : The remote openSUSE host is missing a security update.
File : openSUSE-2015-810.nasl - Type : ACT_GATHER_INFO
2015-11-20Name : The remote Debian host is missing a security update.
File : debian_DLA-345.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2015-11-17Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3398.nasl - Type : ACT_GATHER_INFO
2015-11-17Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_3eb0ccc28c6a11e58519005056ac623e.nasl - Type : ACT_GATHER_INFO
2015-11-17Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-2811-1.nasl - Type : ACT_GATHER_INFO
2015-10-22Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-1791-1.nasl - Type : ACT_GATHER_INFO
2015-08-20Name : The remote Fedora host is missing a security update.
File : fedora_2015-5247.nasl - Type : ACT_GATHER_INFO
2015-08-20Name : The remote Fedora host is missing a security update.
File : fedora_2015-5279.nasl - Type : ACT_GATHER_INFO
2015-07-14Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-1227-1.nasl - Type : ACT_GATHER_INFO
2015-07-14Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-1228-1.nasl - Type : ACT_GATHER_INFO
2015-07-07Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-1196-1.nasl - Type : ACT_GATHER_INFO
2015-06-19Name : The remote openSUSE host is missing a security update.
File : openSUSE-2015-432.nasl - Type : ACT_GATHER_INFO
2015-06-15Name : The remote Debian host is missing a security update.
File : debian_DLA-244.nasl - Type : ACT_GATHER_INFO
2015-06-10Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_10d149550e4511e5b6a8002590263bf5.nasl - Type : ACT_GATHER_INFO
2015-06-09Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3282.nasl - Type : ACT_GATHER_INFO
2015-06-09Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-2628-1.nasl - Type : ACT_GATHER_INFO
2015-05-20Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-0281-1.nasl - Type : ACT_GATHER_INFO
2015-03-30Name : The remote Fedora host is missing a security update.
File : fedora_2015-0577.nasl - Type : ACT_GATHER_INFO
2015-03-30Name : The remote Fedora host is missing a security update.
File : fedora_2015-3043.nasl - Type : ACT_GATHER_INFO
2015-01-26Name : The remote openSUSE host is missing a security update.
File : openSUSE-2015-54.nasl - Type : ACT_GATHER_INFO
2015-01-06Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3118.nasl - Type : ACT_GATHER_INFO
2015-01-06Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-2450-1.nasl - Type : ACT_GATHER_INFO