Florian Picca

**Name of the Vulnerable Software and Affected Versions** strongSwan versions 5.3.0 through 5.9.11 **Description** The issue is caused by a buffer overflow in the charon-tkm process with IKE protocol implementation based on TKMv2, leading to possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer. An attack can occur via a crafted IKE SA INIT message. The vulnerability is present in systems using charon-tkm and strongSwan releases starting from 5.3.0. **Recommendations** For strongSwan versions 5.3.0 through 5.9.11, update to version 5.9.12 or apply the available patches to fix the vulnerability. As a temporary workaround, consider restricting access to the charon-tkm process to minimize the risk of exploitation. Avoid using the `DH public value` in the affected IKE SA INIT message until the issue is resolved.