CVE-2022-4967

Name of the Vulnerable Software and Affected Versions strongSwan versions 5.9.2 through 5.9.5

Description The issue is related to authorization bypass through improper validation of certificates with host mismatch. When certificates are used to authenticate clients in TLS-based EAP methods, the IKE or EAP identity supplied by a client is not enforced to be contained in the client's certificate. This allows clients to authenticate with any trusted certificate and claim an arbitrary IKE/EAP identity as their own, which is problematic if the identity is used to make policy decisions.

Recommendations For strongSwan versions 5.9.2 through 5.9.5, update to version 5.9.6 or later to resolve the issue. As a temporary workaround, consider restricting the use of trusted certificates to minimize the risk of exploitation. Additionally, review and restrict any policy decisions based on IKE or EAP identities to prevent unauthorized access.