Main Vulnerability Database SB2023081813

SB2023081813 - Remote code execution in strongSwan

Published: August 18, 2023

Security Bulletin ID SB2023081813

Severity

High

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Expired pointer dereference (CVE-ID: CVE-2023-26463)

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to an error in libtls implementation that treats the public key from the peer's certificate as trusted, even if the certificate can't be verified successfully. A remote attacker can supply a self-signed certificate to a server that authenticates clients with a TLS-based EAP method like EAP-TLS, trigger an expired pointer dereference and crash the server or execute arbitrary code.

Remediation

Install update from vendor's website.

References

https://www.strongswan.org/blog/2023/03/02/strongswan-vulnerability-%28cve-2023-26463%29.html
https://github.com/strongswan/strongswan/releases
https://security.netapp.com/advisory/ntap-20230517-0010/