CVE-2022-40617

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions strongSwan versions prior to 5.9.8

Description The issue is related to an uncontrolled resource consumption in the revocation plugin of the StrongSwan VPN client. It allows a remote attacker to cause a denial of service by sending a crafted end-entity or intermediate CA certificate that contains a CRL/OCSP URL pointing to a server under the attacker's control. This server can be configured to not respond properly or to send an excessive amount of application data after the initial TCP handshake.

Recommendations For strongSwan versions prior to 5.9.8, update to version 5.9.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the revocation plugin to minimize the risk of exploitation.

Fix

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

ALT-PU-2022-2731

ALT-PU-2022-3129

ALT-PU-2024-7917

AZL-11398

BDU:2024-07353

CVE-2022-40617

DLA-3143-1

DSA-5249-1

OESA-2022-2034

OPENSUSE-SU-2022_4159-1

OPENSUSE-SU-2022_4197-1

ROSA-SA-2023-2274

SUSE-SU-2022:4159-1

SUSE-SU-2022:4185-1

SUSE-SU-2022:4197-1

SUSE-SU-2022_4159-1

SUSE-SU-2022_4185-1

SUSE-SU-2022_4197-1

USN-5651-1

USN-5651-2

Affected Products

Alt Linux

Astra Linux

Linuxmint

Suse

Ubuntu

Strongswan

CVE-2022-40617

Weakness Enumeration

Related Identifiers

Affected Products

References · 34