Kevin Wojtysiak

**Name of the Vulnerable Software and Affected Versions** strongSwan versions 4.3.5 through 5.0.3 strongSwan versions prior to 5.1.0 **Description** The issue concerns multiple vulnerabilities in the strongSwan package, which can be exploited remotely to compromise the confidentiality, integrity, and availability of protected information. Specifically, when using the OpenSSL plugin for ECDSA signature verification, it allows remote attackers to authenticate as other users via an invalid signature. **Recommendations** For strongSwan versions 4.3.5 through 5.0.3, consider updating to a version later than 5.0.3. For strongSwan versions prior to 5.1.0, update to version 5.1.0 or later to resolve the issue. As a temporary workaround, consider disabling the use of the OpenSSL plugin for ECDSA signature verification until a patch is available.