Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openswan openswan 2.2 vulnerabilities and exploits
(subscribe to this query)
3.6
CVSSv2
CVE-2011-2147
Openswan 2.2.x does not properly restrict permissions for (1) /var/run/starter.pid, related to starter.c in the IPsec starter, and (2) /var/lock/subsys/ipsec, which allows local users to kill arbitrary processes by writing a PID to a file, or possibly bypass disk quotas by writin...
Openswan Openswan 2.2.0
Openswan Openswan 2.2.1
4.4
CVSSv2
CVE-2008-4190
The IPSEC livetest tool in Openswan 2.4.12 and previous versions, and 2.6.x up to and including 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the (1) ipseclive.conn and (2) ipsec.olts.remote.log temporary files. NOTE: i...
Openswan Openswan 1.0.5
Openswan Openswan 2.1.6
Openswan Openswan 2.1.4
Openswan Openswan 1.0.9
Openswan Openswan 1.0.8
Openswan Openswan 1.0.7
Openswan Openswan 2.3
Openswan Openswan 1.0.6
Openswan Openswan 2.2
Openswan Openswan 2.1.1
Openswan Openswan 2.1.5
Openswan Openswan 1.0.4
Openswan Openswan 2.1.2
Xelerance Openswan 2.3.1
Xelerance Openswan 2.4.2
Xelerance Openswan 2.4.4
Xelerance Openswan 2.6.03
Xelerance Openswan 2.6.04
Xelerance Openswan 2.6.05
Xelerance Openswan 2.6.06
Xelerance Openswan 2.6.07
Xelerance Openswan 2.6.08
1 EDB exploit
7.8
CVSSv2
CVE-2005-3671
The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) prior to 2.4.4, and freeswan in SUSE LINUX 9.1 prior to 2.04_1.5.4-1.23, allow remote malicious users to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length,...
Openswan Openswan 2.1.6
Openswan Openswan 2.1.4
Openswan Openswan 2.3
Openswan Openswan 2.2
Openswan Openswan 2.1.1
Frees Wan Frees Wan 2.04
Openswan Openswan 2.1.5
Openswan Openswan 2.1.2
Xelerance Openswan 2.4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege
CVE-2022-48762
CVE-2022-48751
CVE-2024-37079
CVE-2024-30848
LFI
man-in-the-middle
CVE-2022-48736
CVE-2024-30103
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started