This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:strongswan:strongswan
Detail
VendorStrongswanFirst view 2004-12-06
ProductStrongswanLast view2017-09-07
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:strongswan:strongswan:4.3.013
cpe:/a:strongswan:strongswan:4.2.1213
cpe:/a:strongswan:strongswan:4.2.313
cpe:/a:strongswan:strongswan:4.2.1313
cpe:/a:strongswan:strongswan:4.2.113
Hide | Show 45 More...
CPE NameAffected CVE
cpe:/a:strongswan:strongswan:4.2.213
cpe:/a:strongswan:strongswan:4.2.013
cpe:/a:strongswan:strongswan:4.3.112
cpe:/a:strongswan:strongswan:4.2.1112
cpe:/a:strongswan:strongswan:4.2.512
cpe:/a:strongswan:strongswan:4.2.612
cpe:/a:strongswan:strongswan:4.2.412
cpe:/a:strongswan:strongswan:4.2.1012
cpe:/a:strongswan:strongswan:5.0.212
cpe:/a:strongswan:strongswan:4.3.611
cpe:/a:strongswan:strongswan:4.3.211
cpe:/a:strongswan:strongswan:4.3.511
cpe:/a:strongswan:strongswan:4.4.011
cpe:/a:strongswan:strongswan:4.3.311
cpe:/a:strongswan:strongswan:4.3.411
cpe:/a:strongswan:strongswan:2.8.811
cpe:/a:strongswan:strongswan:4.2.711
cpe:/a:strongswan:strongswan:2.8.011
cpe:/a:strongswan:strongswan:4.2.911
cpe:/a:strongswan:strongswan:4.2.811
cpe:/a:strongswan:strongswan:2.8.211
cpe:/a:strongswan:strongswan:2.8.411
cpe:/a:strongswan:strongswan:2.8.511
cpe:/a:strongswan:strongswan:2.8.711
cpe:/a:strongswan:strongswan:2.8.111
cpe:/a:strongswan:strongswan:2.8.611
cpe:/a:strongswan:strongswan:2.8.311
cpe:/a:strongswan:strongswan:4.2.1511
cpe:/a:strongswan:strongswan:4.2.1411
cpe:/a:strongswan:strongswan:4.5.211
cpe:/a:strongswan:strongswan:4.6.311
cpe:/a:strongswan:strongswan:4.6.211
cpe:/a:strongswan:strongswan:4.5.311
cpe:/a:strongswan:strongswan:4.5.111
cpe:/a:strongswan:strongswan:4.6.111
cpe:/a:strongswan:strongswan:4.5.011
cpe:/a:strongswan:strongswan:4.6.011
cpe:/a:strongswan:strongswan:5.0.111
cpe:/a:strongswan:strongswan:5.0.011
cpe:/a:strongswan:strongswan:5.0.311
cpe:/a:strongswan:strongswan:5.0.411
cpe:/a:strongswan:strongswan:4.1.1110
cpe:/a:strongswan:strongswan:2.8.1010
cpe:/a:strongswan:strongswan:4.2.1610
cpe:/a:strongswan:strongswan:4.4.110

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
7.52017-09-07CVE-2015-3991NetworkLowNone Requ...
52017-08-18CVE-2017-11185NetworkLowNone Requ...
4.32017-06-08CVE-2017-9023NetworkMediumNone Requ...
52017-06-08CVE-2017-9022NetworkLowNone Requ...
52015-11-18CVE-2015-8023NetworkLowNone Requ...
Hide | Show 18 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
2.62015-06-10CVE-2015-4171NetworkHighNone Requ...
52015-01-07CVE-2014-9221NetworkLowNone Requ...
52014-05-07CVE-2014-2891NetworkLowNone Requ...
6.42014-04-16CVE-2014-2338NetworkLowNone Requ...
52013-11-02CVE-2013-6076NetworkLowNone Requ...
52013-11-02CVE-2013-6075NetworkLowNone Requ...
4.32013-08-28CVE-2013-5018NetworkMediumNone Requ...
5.12013-07-09CVE-2013-2054NetworkHighNone Requ...
4.92013-05-02CVE-2013-2944NetworkMediumRequires ...
7.52012-06-27CVE-2012-2388NetworkLowNone Requ...
7.52010-08-20CVE-2010-2628NetworkLowNone Requ...
52009-08-04CVE-2009-2661NetworkLowNone Requ...
52009-06-24CVE-2009-2185NetworkLowNone Requ...
52009-06-07CVE-2009-1958NetworkLowNone Requ...
52009-06-07CVE-2009-1957NetworkLowNone Requ...
52009-04-01CVE-2009-0790NetworkLowNone Requ...
52008-10-14CVE-2008-4551NetworkLowNone Requ...
102004-12-06CVE-2004-0590NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
19% (4)CWE-20Improper Input Validation
14% (3)CWE-399Resource Management Errors
14% (3)CWE-287Improper Authentication
14% (3)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
14% (3)CWE-19Data Handling
Hide | Show 5 More...
%idName
4% (1)CWE-476NULL Pointer Dereference
4% (1)CWE-310Cryptographic Issues
4% (1)CWE-264Permissions, Privileges, and Access Controls
4% (1)CWE-200Information Exposure
4% (1)CWE-94Failure to Control Generation of Code ('Code Injection')

Open Source Vulnerability Database (OSVDB)

idDescription
67148strongSwan snprintf() Function Certificate / Identification Payload Remote Co...
55421Openswan ASN.1 Parser Crafted X.509 Certificate Remote IKE Daemon DoS
55420strongSwan ASN.1 Parser Crafted X.509 Certificate RDN IKE Daemon Remote DoS
55047strongSwan charon Daemon charon/sa/tasks/child_create.c IKE_AUTH Request Hand...
55046strongSwan charon Daemon charon/sa/ike_sa.c IKE_SA_INIT Request Handling DoS
Hide | Show 4 More...
idDescription
53209Openswan Pluto IKE Daemon Dead Peer Detection NULL Dereference Remote DoS
53208strongSwan Pluto IKE Daemon Dead Peer Detection NULL Dereference Remote DoS
48410strongSwan IKEv2 charon Daemon Crafted IKE_SA_INIT Message Remote DoS
7281Swan Products X.509 Certificate Validation Bypass and DoS

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:0691-1 (update)
File : nvt/gb_suse_2012_0691_1.nasl
2012-08-30Name : Fedora Update for strongswan FEDORA-2012-8815
File : nvt/gb_fedora_2012_8815_strongswan_fc17.nasl
2012-06-11Name : Fedora Update for strongswan FEDORA-2012-8821
File : nvt/gb_fedora_2012_8821_strongswan_fc16.nasl
2012-05-31Name : Debian Security Advisory DSA 2483-1 (strongswan)
File : nvt/deb_2483_1.nasl
2011-08-09Name : CentOS Update for openswan CESA-2009:0402 centos5 i386
File : nvt/gb_CESA-2009_0402_openswan_centos5_i386.nasl
Hide | Show 20 More...
idDescription
2011-08-09Name : CentOS Update for openswan CESA-2009:1138 centos5 i386
File : nvt/gb_CESA-2009_1138_openswan_centos5_i386.nasl
2009-11-11Name : SuSE Security Summary SUSE-SR:2009:018
File : nvt/suse_sr_2009_018.nasl
2009-10-19Name : Mandrake Security Advisory MDVSA-2009:273 (strongswan)
File : nvt/mdksa_2009_273.nasl
2009-10-19Name : SuSE Security Summary SUSE-SR:2009:016
File : nvt/suse_sr_2009_016.nasl
2009-10-13Name : SLES10: Security update for openswan
File : nvt/sles10_openswan.nasl
2009-10-13Name : SLES10: Security update for openswan
File : nvt/sles10_openswan0.nasl
2009-10-13Name : SLES10: Security update for openswan
File : nvt/sles10_openswan1.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan0.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan1.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan2.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan3.nasl
2009-10-11Name : SLES11: Security update for openswan
File : nvt/sles11_openswan.nasl
2009-10-11Name : SLES11: Security update for openswan
File : nvt/sles11_openswan0.nasl
2009-10-11Name : SLES11: Security update for openswan
File : nvt/sles11_openswan1.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan0.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan1.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan2.nasl
2009-10-10Name : SLES9: Security update for freeswan
File : nvt/sles9p5053980.nasl

Snort® IPS/IDS

DateDescription
2014-01-10Openswan/Strongswan Pluto IKE daemon ISAKMP DPD malformed packet DOS attempt
RuleID : 21334 - Type : SERVER-WEBAPP - Revision : 2
2014-01-10Openswan/Strongswan Pluto IKE daemon ISAKMP DPD malformed packet DOS attempt
RuleID : 21333 - Type : SERVER-WEBAPP - Revision : 2
2014-01-10strongSwan Certificate and Identification payload overflow attempt
RuleID : 19182 - Type : SERVER-OTHER - Revision : 10

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2017-09-05Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3962.nasl - Type : ACT_GATHER_INFO
2017-08-30Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2017-2293-1.nasl - Type : ACT_GATHER_INFO
2017-08-22Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-3397-1.nasl - Type : ACT_GATHER_INFO
2017-08-21Name : The remote Debian host is missing a security update.
File : debian_DLA-1059.nasl - Type : ACT_GATHER_INFO
2017-08-14Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2017-2143-1.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2017-07-20Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_c7e8e9556c6111e79b012047478f2f70.nasl - Type : ACT_GATHER_INFO
2017-07-20Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_e6ccaf8a6c6311e79b012047478f2f70.nasl - Type : ACT_GATHER_INFO
2017-06-02Name : The remote Debian host is missing a security update.
File : debian_DLA-973.nasl - Type : ACT_GATHER_INFO
2017-06-02Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2017-1471-1.nasl - Type : ACT_GATHER_INFO
2017-06-02Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2017-1473-1.nasl - Type : ACT_GATHER_INFO
2017-05-31Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3866.nasl - Type : ACT_GATHER_INFO
2017-05-31Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-3301-1.nasl - Type : ACT_GATHER_INFO
2015-12-29Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-2183-2.nasl - Type : ACT_GATHER_INFO
2015-12-04Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-2183-1.nasl - Type : ACT_GATHER_INFO
2015-12-04Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-2186-1.nasl - Type : ACT_GATHER_INFO
2015-11-30Name : The remote openSUSE host is missing a security update.
File : openSUSE-2015-810.nasl - Type : ACT_GATHER_INFO
2015-11-20Name : The remote Debian host is missing a security update.
File : debian_DLA-345.nasl - Type : ACT_GATHER_INFO
2015-11-17Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3398.nasl - Type : ACT_GATHER_INFO
2015-11-17Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_3eb0ccc28c6a11e58519005056ac623e.nasl - Type : ACT_GATHER_INFO
2015-11-17Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-2811-1.nasl - Type : ACT_GATHER_INFO
2015-10-22Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-1791-1.nasl - Type : ACT_GATHER_INFO
2015-08-20Name : The remote Fedora host is missing a security update.
File : fedora_2015-5247.nasl - Type : ACT_GATHER_INFO
2015-08-20Name : The remote Fedora host is missing a security update.
File : fedora_2015-5279.nasl - Type : ACT_GATHER_INFO
2015-07-14Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-1227-1.nasl - Type : ACT_GATHER_INFO
2015-07-14Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-1228-1.nasl - Type : ACT_GATHER_INFO