vulnerability

Ubuntu: (Multiple Advisories) (CVE-2023-41913): strongSwan vulnerability

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Nov 20, 2023

Added

Nov 21, 2023

Modified

Apr 16, 2026

Description

strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKE_SA_INIT message.

Solutions

ubuntu-pro-upgrade-libstrongswanubuntu-pro-upgrade-strongswanubuntu-upgrade-libstrongswanubuntu-upgrade-strongswan

References

CVE-2023-41913
https://attackerkb.com/topics/CVE-2023-41913
CWE-120
EUVD-EUVD-2023-46391
UBUNTU-USN-6488-1
UBUNTU-USN-6488-2
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-46391

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report