PT-2018-18613 · Clavister · Clavister Cos Core

Adam Czubak

Published

2018-08-15

Updated

2019-10-03

CVE-2018-8753

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Clavister cOS Core versions prior to 11.00.11 Clavister cOS Core versions 11.20.xx prior to 11.20.06 Clavister cOS Core versions 12.00.xx prior to 12.00.09

Description The issue allows remote attackers to decrypt RSA-encrypted nonces by leveraging a Bleichenbacher attack, affecting the IKEv1 implementation.

Recommendations For versions prior to 11.00.11, update to version 11.00.11 or later. For versions 11.20.xx prior to 11.20.06, update to version 11.20.06 or later. For versions 12.00.xx prior to 12.00.09, update to version 12.00.09 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-8753

Affected Products

Clavister Cos Core

PT-2018-18613 · Clavister · Clavister Cos Core

CVE-2018-8753

Related Identifiers

Affected Products

References · 4