Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2023-26463

Опубликовано: 15 апр. 2023
Источник: ubuntu
Приоритет: high
CVSS3: 9.8

Описание

strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution because it uses a variable named "public" for two different purposes within the same function. There is initially incorrect access control, later followed by an expired pointer dereference. One attack vector is sending an untrusted client certificate during EAP-TLS. A server is affected only if it loads plugins that implement TLS-based EAP methods (EAP-TLS, EAP-TTLS, EAP-PEAP, or EAP-TNC). This is fixed in 5.9.10.

РелизСтатусПримечание
bionic

not-affected

code not present
devel

released

5.9.8-3ubuntu3
esm-infra-legacy/trusty

not-affected

code not present
esm-infra/bionic

not-affected

code not present
esm-infra/focal

not-affected

code not present
esm-infra/xenial

not-affected

code not present
fips-updates/bionic

not-affected

code not present
fips-updates/focal

not-affected

code not present
fips-updates/xenial

not-affected

code not present
fips/bionic

not-affected

code not present

Показывать по

Ссылки на источники

9.8 Critical

CVSS3

Связанные уязвимости

nvd логотип

CVE-2023-26463

CVSS3: 9.8
nvd
больше 2 лет назад

strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution because it uses a variable named "public" for two different purposes within the same function. There is initially incorrect access control, later followed by an expired pointer dereference. One attack vector is sending an untrusted client certificate during EAP-TLS. A server is affected only if it loads plugins that implement TLS-based EAP methods (EAP-TLS, EAP-TTLS, EAP-PEAP, or EAP-TNC). This is fixed in 5.9.10.

msrc логотип

CVE-2023-26463

CVSS3: 9.8
msrc
больше 2 лет назад

Описание отсутствует

debian логотип

CVE-2023-26463

CVSS3: 9.8
debian
больше 2 лет назад

strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution be ...

github логотип

GHSA-vcx9-7pcc-q8c7

CVSS3: 9.8
github
больше 2 лет назад

strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution because it uses a variable named "public" for two different purposes within the same function. There is initially incorrect access control, later followed by an expired pointer dereference. One attack vector is sending an untrusted client certificate during EAP-TLS. A server is affected only if it loads plugins that implement TLS-based EAP methods (EAP-TLS, EAP-TTLS, EAP-PEAP, or EAP-TNC). This is fixed in 5.9.10.

fstec логотип

BDU:2023-02129

CVSS3: 7.5
fstec
больше 2 лет назад

Уязвимость демона strongSwan, связанная с ошибками при проверке сертификата в методах EAP на основе TLS, позволяющая нарушителю выполнить отказ в обслуживании

9.8 Critical

CVSS3