Vulnerabilities > Strongswan > Strongswan > 5.9.8

DATE CVE VULNERABILITY TITLE RISK
2023-12-07 CVE-2023-41913 Classic Buffer Overflow vulnerability in Strongswan
strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy.
network
low complexity
strongswan CWE-120
critical
 9.8
9.8
2023-04-15 CVE-2023-26463 Improper Certificate Validation vulnerability in Strongswan 5.9.8/5.9.9
strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution because it uses a variable named "public" for two different purposes within the same function.
network
low complexity
strongswan CWE-295
critical
 9.8
9.8