CVE-2023-26463

EPSS 12.16%
Veröffentlicht 15.04.2023 00:15:07
Zuletzt bearbeitet 07.02.2025 22:15:12
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution because it uses a variable named "public" for two different purposes within the same function. There is initially incorrect access control, later followed by an expired pointer dereference. One attack vector is sending an untrusted client certificate during EAP-TLS. A server is affected only if it loads plugins that implement TLS-based EAP methods (EAP-TLS, EAP-TTLS, EAP-PEAP, or EAP-TNC). This is fixed in 5.9.10.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Strongswan ≫ Strongswan Version5.9.8 Update-

Strongswan ≫ Strongswan Version5.9.9 Update-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	12.16%	0.936

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-295 Improper Certificate Validation

The product does not validate, or incorrectly validates, a certificate.

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://github.com/strongswan/strongswan/releases

Release Notes

https://security.netapp.com/advisory/ntap-20230517-0010/

https://www.strongswan.org/blog/2023/03/02/strongswan-vulnerability-%28cve-2023-26463%29.html

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2023-26463

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-26463

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-26463

EUVD