CVE-2023-41913

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions strongSwan versions 5.3.0 through 5.9.11

Description The issue is caused by a buffer overflow in the charon-tkm process with IKE protocol implementation based on TKMv2, leading to possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer. An attack can occur via a crafted IKE SA INIT message. The vulnerability is present in systems using charon-tkm and strongSwan releases starting from 5.3.0.

Recommendations For strongSwan versions 5.3.0 through 5.9.11, update to version 5.9.12 or apply the available patches to fix the vulnerability. As a temporary workaround, consider restricting access to the charon-tkm process to minimize the risk of exploitation. Avoid using the DH public value in the affected IKE SA INIT message until the issue is resolved.

Fix

RCE

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-120

Related Identifiers

ALT-PU-2023-8054

ALT-PU-2023-8212

ALT-PU-2024-7917

AZL-32071

AZL-35287

BDU:2023-08128

CVE-2023-41913

DLA-3663-1

DSA-5560-1

MGASA-2024-0216

OESA-2023-1945

OPENSUSE-SU-2023_4514-1

OPENSUSE-SU-2023_4529-1

SUSE-SU-2023:4514-1

SUSE-SU-2023:4515-1

SUSE-SU-2023:4516-1

SUSE-SU-2023:4529-1

SUSE-SU-2023_4514-1

SUSE-SU-2023_4515-1

SUSE-SU-2023_4516-1

SUSE-SU-2023_4529-1

USN-6488-1

USN-6488-2

Affected Products

Alt Linux

Astra Linux

Linuxmint

Red Os

Suse

Ubuntu

Strongswan

CVE-2023-41913

Weakness Enumeration

Related Identifiers

Affected Products

References · 55