CVE-2023-26463

EPSS 12.16%
Published 15.04.2023 00:15:07
Last modified 07.02.2025 22:15:12
Source cve@mitre.org
Teams watchlist Login
Open Login

strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution because it uses a variable named "public" for two different purposes within the same function. There is initially incorrect access control, later followed by an expired pointer dereference. One attack vector is sending an untrusted client certificate during EAP-TLS. A server is affected only if it loads plugins that implement TLS-based EAP methods (EAP-TLS, EAP-TTLS, EAP-PEAP, or EAP-TNC). This is fixed in 5.9.10.

Affected products Warnungen 0 Metrics 3 CWE 2 References 6

Data is provided by the National Vulnerability Database (NVD)

Strongswan ≫ Strongswan Version5.9.8 Update-

Strongswan ≫ Strongswan Version5.9.9 Update-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	12.16%	0.936

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-295 Improper Certificate Validation

The product does not validate, or incorrectly validates, a certificate.

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://github.com/strongswan/strongswan/releases

Release Notes

https://security.netapp.com/advisory/ntap-20230517-0010/

https://www.strongswan.org/blog/2023/03/02/strongswan-vulnerability-%28cve-2023-26463%29.html

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2023-26463

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-26463

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-26463

EUVD