CVE-2015-3991

Опубликовано: 07 сент. 2017

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

strongSwan 5.2.2 and 5.3.0 allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code.

Ссылки

http://lists.fedoraproject.org/pipermail/package-announce/2015-August/164276.html
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-August/164278.html
Third Party Advisory
http://www.securityfocus.com/bid/76861
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1222815
Issue Tracking
Third Party Advisory
https://www.strongswan.org/blog/2015/06/01/strongswan-vulnerability-%28cve-2015-3991%29.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-August/164276.html
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-August/164278.html
Third Party Advisory
http://www.securityfocus.com/bid/76861
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1222815
Issue Tracking
Third Party Advisory
https://www.strongswan.org/blog/2015/06/01/strongswan-vulnerability-%28cve-2015-3991%29.html

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:strongswan:strongswan:5.2.2:*:*:*:*:*:*:*

cpe:2.3:a:strongswan:strongswan:5.3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.04756

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-19

Связанные уязвимости

CVE-2015-3991

CVSS3: 9.8

ubuntu

почти 8 лет назад

strongSwan 5.2.2 and 5.3.0 allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code.

CVE-2015-3991

CVSS3: 9.8

debian

почти 8 лет назад

strongSwan 5.2.2 and 5.3.0 allows remote attackers to cause a denial o ...

GHSA-23jq-mpmp-prmf

CVSS3: 9.8

github

около 3 лет назад

strongSwan 5.2.2 and 5.3.0 allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code.

EPSS

Процентиль: 89%

0.04756

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-19