VDB
CVE-2021-45079
CVE-2021-45079
PUBLISHED
Es existiert eine Schwachstelle in strongSwan. Der Fehler besteht im Code des EAP-Authentifizierungsclients. Ein entfernter anonymer Angreifer kann diese Schwachstelle ausnutzen, um Sicherheitsmaßnahmen zu umgehen und einen Denial-of-Service-Zustand zu verursachen.
EPSS 0.12% · 30.6th percentile
Risk Scores
EPSS Score
0.12%
30.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE | SUSE Linux | |
| Debian | Debian Linux | |
| Ubuntu | Ubuntu Linux | |
| Gentoo | Gentoo Linux |
Exploit Intelligence
Timeline
- Jan 24, 2022 CVE Published
- Jan 31, 2022 EPSS Score
- Mar 25, 2022 EPSS Score
- May 16, 2022 EPSS Score
- Jul 8, 2022 EPSS Score
- Aug 31, 2022 EPSS Score
- Oct 23, 2022 EPSS Score
- Dec 14, 2022 EPSS Score
- Feb 5, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 30, 2023 EPSS Score
- May 22, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2024-1023.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1023 advisory
- https://download.strongswan.org/security/CVE-2021-45079/ advisory
- https://lists.debian.org/debian-security-announce/2022/msg00022.html advisory
- https://ubuntu.com/security/notices/USN-5250-2 advisory
- https://ubuntu.com/security/notices/USN-5250-1 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010084.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-January/010126.html advisory
- https://lists.debian.org/debian-lts-announce/2022/02/msg00003.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010262.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-February/010267.html advisory
- https://security.gentoo.org/glsa/202405-08 advisory