Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-1763

An out-of-bounds buffer read flaw was found in the pluto daemon of libreswan from versions 3.27 till 3.31 where, an unauthenticated attacker could use this flaw to crash libreswan by sending specially-crafted IKEv1 Informational Exchange packets. The daemon respawns after the crash.

Published

2020-05-12T14:15:12.580

Last Modified

2024-11-21T05:11:20.113

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-125
Type: Secondary
CWE-125

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	libreswan	libreswan	≤ 3.31	Yes
Application	libreswan	libreswan	3.5	Yes

References

https://bugzilla.redhat.com/show_bug.cgi?id=1813329 Issue Tracking, Third Party Advisory ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1763 Issue Tracking, Third Party Advisory ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-379803.pdf Third Party Advisory ([email protected])
https://github.com/libreswan/libreswan/commit/471a3e41a449d7c753bc4edbba4239501bb62ba8 Patch, Third Party Advisory ([email protected])
https://libreswan.org/security/CVE-2020-1763/CVE-2020-1763.txt Patch, Vendor Advisory ([email protected])
https://security.gentoo.org/glsa/202007-21 Third Party Advisory ([email protected])
https://us-cert.cisa.gov/ics/advisories/icsa-21-040-04 Third Party Advisory, US Government Resource ([email protected])
https://www.debian.org/security/2020/dsa-4684 Third Party Advisory ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=1813329 Issue Tracking, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1763 Issue Tracking, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://cert-portal.siemens.com/productcert/pdf/ssa-379803.pdf Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/libreswan/libreswan/commit/471a3e41a449d7c753bc4edbba4239501bb62ba8 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://libreswan.org/security/CVE-2020-1763/CVE-2020-1763.txt Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/202007-21 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://us-cert.cisa.gov/ics/advisories/icsa-21-040-04 Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2020/dsa-4684 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)