strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing after the initial TCP handshake, or sends an excessive amount of application data.

The version of strongswan installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-40617 advisory.

  - strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by     sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to     a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing     after the initial TCP handshake, or sends an excessive amount of application data. (CVE-2022-40617)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-11bf2b2597 advisory.

  - strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by     sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to     a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing     after the initial TCP handshake, or sends an excessive amount of application data. (CVE-2022-40617)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4197-1 advisory.

  - strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by     sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to     a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing     after the initial TCP handshake, or sends an excessive amount of application data. (CVE-2022-40617)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES12 / SLES_SAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4185-1 advisory.

  - strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by     sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to     a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing     after the initial TCP handshake, or sends an excessive amount of application data. (CVE-2022-40617)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4159-1 advisory.

  - strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by     sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to     a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing     after the initial TCP handshake, or sends an excessive amount of application data. (CVE-2022-40617)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3143 advisory.

  - Lahav Schlesinger reported a bug related to online           certificate revocation checking that can lead     to a           denial-of-service attack . (CVE-2022-40617)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 0ae56f3e-488c-11ed-bb31-b42e99a1b9c3 advisory.

  - Lahav Schlesinger reported a bug related to online           certificate revocation checking that can lead     to a           denial-of-service attack . (CVE-2022-40617)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5249 advisory.

  - strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by     sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to     a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing     after the initial TCP handshake, or sends an excessive amount of application data. (CVE-2022-40617)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5651-2 advisory.

  - strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by     sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to     a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing     after the initial TCP handshake, or sends an excessive amount of application data. (CVE-2022-40617)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5651-1 advisory.

  - strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by     sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to     a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing     after the initial TCP handshake, or sends an excessive amount of application data. (CVE-2022-40617)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
172777	CBL Mariner 2.0 Security Update: strongswan (CVE-2022-40617)	Nessus	MarinerOS Local Security Checks	high
169057	Fedora 36 : strongswan (2022-11bf2b2597)	Nessus	Fedora Local Security Checks	high
168159	SUSE SLED15 / SLES15 Security Update : strongswan (SUSE-SU-2022:4197-1)	Nessus	SuSE Local Security Checks	high
168141	SUSE SLES12 Security Update : strongswan (SUSE-SU-2022:4185-1)	Nessus	SuSE Local Security Checks	high
168140	SUSE SLED15 / SLES15 Security Update : strongswan (SUSE-SU-2022:4159-1)	Nessus	SuSE Local Security Checks	high
165995	Debian DLA-3143-1 : strongswan - LTS security update	Nessus	Debian Local Security Checks	high
165923	FreeBSD : strongswan -- DOS attack vulnerability (0ae56f3e-488c-11ed-bb31-b42e99a1b9c3)	Nessus	FreeBSD Local Security Checks	high
165746	Debian DSA-5249-1 : strongswan - security update	Nessus	Debian Local Security Checks	high
165669	Ubuntu 16.04 ESM : strongSwan vulnerability (USN-5651-2)	Nessus	Ubuntu Local Security Checks	high
165668	Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : strongSwan vulnerability (USN-5651-1)	Nessus	Ubuntu Local Security Checks	high

Detections

Analytics

CVE-2022-40617

high

Tenable Plugins

high

high

high

high

high

high

high

high

high

high