CVE-2026-25075

Medienbericht

Exploit

EPSS 0.23%
Veröffentlicht 23.03.2026 18:33:10
Zuletzt bearbeitet 04.05.2026 19:16:02
Quelle disclosure@vulncheck.com
CVE-Watchlists
Login
Unerledigt
Login

strongSwan 4.5.0 < 6.0.5 EAP-TTLS AVP Parsing Integer Underflow

strongSwan versions 4.5.0 prior to 6.0.5 contain an integer underflow vulnerability in the EAP-TTLS AVP parser that allows unauthenticated remote attackers to cause a denial of service by sending crafted AVP data with invalid length fields during IKEv2 authentication. Attackers can exploit the failure to validate AVP length fields before subtraction to trigger excessive memory allocation or NULL pointer dereference, crashing the charon IKE daemon.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 9

CNA 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerstrongSwan

≫

Produkt strongSwan

Default Statusunaffected

Version 4.5.0

Version < 6.0.5

Status affected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.23%	0.461

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
disclosure@vulncheck.com	8.7	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
disclosure@vulncheck.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-191 Integer Underflow (Wrap or Wraparound)

The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://thehackernews.com/2026/04/weekly-recap-axios-hack-chrome-0-day.html

Media Report

https://www.strongswan.org/blog/2026/03/23/strongswan-vulnerability-(cve-2026-25075).html

https://www.strongswan.org/blog/2026/03/23/strongswan-6.0.5-released.html

https://www.vulncheck.com/advisories/strongswan-eap-ttls-avp-parsing-integer-underflow

https://lists.debian.org/debian-lts-announce/2026/03/msg00016.html

https://y637f9qq2x.com/posts/cve-2026-25075/

https://nvd.nist.gov/vuln/detail/CVE-2026-25075

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-25075

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-25075

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-25075