exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

bind:"CVE-2025-62291"

exploitDog

bind:"CVE-2025-62291"

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 15

Количество 15

CVE-2025-62291

2 месяца назад

In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow.

CVSS3: 8.1

EPSS: Низкий

CVE-2025-62291

2 месяца назад

In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow.

CVSS3: 8.1

EPSS: Низкий

CVE-2025-62291

2 месяца назад

In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow.

CVSS3: 8.1

EPSS: Низкий

CVE-2025-62291

2 месяца назад

In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow.

CVSS3: 8.1

EPSS: Низкий

CVE-2025-62291

2 месяца назад

In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a ...

CVSS3: 8.1

EPSS: Низкий

openSUSE-SU-2025:20132-1

4 месяца назад

Security update for strongswan

EPSS: Низкий

SUSE-SU-2025:3904-1

5 месяцев назад

Security update for strongswan

EPSS: Низкий

SUSE-SU-2025:3873-1

5 месяцев назад

Security update for strongswan

EPSS: Низкий

SUSE-SU-2025:3857-1

5 месяцев назад

Security update for strongswan

EPSS: Низкий

SUSE-SU-2025:3856-1

5 месяцев назад

Security update for strongswan

EPSS: Низкий

SUSE-SU-2025:3855-1

5 месяцев назад

Security update for strongswan

EPSS: Низкий

SUSE-SU-2025:3834-1

5 месяцев назад

Security update for strongswan

EPSS: Низкий

GHSA-p527-wjvq-vxg8

2 месяца назад

In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow.

CVSS3: 8.1

EPSS: Низкий

BDU:2026-02400

5 месяцев назад

Уязвимость плагина EAP-MSCHAPv2 VPN-клиента StrongSwan, позволяющая нарушителю выполнить произвольный код и вызвать отказ в обслуживании

CVSS3: 7.5

EPSS: Низкий

ROS-20260122-73-0008

2 месяца назад

Уязвимость strongswan

CVSS3: 8.1

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2025-62291 In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow.	CVSS3: 8.1	0% Низкий	2 месяца назад
	CVE-2025-62291 In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow.	CVSS3: 8.1	0% Низкий	2 месяца назад
	CVE-2025-62291 In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow.	CVSS3: 8.1	0% Низкий	2 месяца назад
	CVE-2025-62291 In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow.	CVSS3: 8.1	0% Низкий	2 месяца назад
	CVE-2025-62291 In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a ...	CVSS3: 8.1	0% Низкий	2 месяца назад
	openSUSE-SU-2025:20132-1 Security update for strongswan		0% Низкий	4 месяца назад
	SUSE-SU-2025:3904-1 Security update for strongswan		0% Низкий	5 месяцев назад
	SUSE-SU-2025:3873-1 Security update for strongswan		0% Низкий	5 месяцев назад
	SUSE-SU-2025:3857-1 Security update for strongswan		0% Низкий	5 месяцев назад
	SUSE-SU-2025:3856-1 Security update for strongswan		0% Низкий	5 месяцев назад
	SUSE-SU-2025:3855-1 Security update for strongswan		0% Низкий	5 месяцев назад
	SUSE-SU-2025:3834-1 Security update for strongswan		0% Низкий	5 месяцев назад
	GHSA-p527-wjvq-vxg8 In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow.	CVSS3: 8.1	0% Низкий	2 месяца назад
	BDU:2026-02400 Уязвимость плагина EAP-MSCHAPv2 VPN-клиента StrongSwan, позволяющая нарушителю выполнить произвольный код и вызвать отказ в обслуживании	CVSS3: 7.5	0% Низкий	5 месяцев назад
	ROS-20260122-73-0008 Уязвимость strongswan	CVSS3: 8.1	0% Низкий	2 месяца назад

Уязвимостей на страницу