Vulnerability CVE-2021-45079

Vulnerability Name:

CVE-2021-45079 (CCN-219504)

Assigned:

2021-12-16

Published:

2022-01-24

Updated:

2022-07-12

Summary:

In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early without actually authenticating the client and (in the case of EAP methods with mutual authentication and EAP-only authentication for IKEv2) even without server authentication.

CVSS v3 Severity:

9.1 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H)
7.9 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): None Availibility (A): High

9.1 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H)
7.9 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): None Availibility (A): High

CVSS v2 Severity:

5.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): Partial

9.4 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): None Availibility (A): Complete

Vulnerability Type:

CWE-476

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2021-45079

Source: XF
Type: UNKNOWN
strongswan-cve202145079-dos(219504)

Source: CCN
Type: strongSwan Web site
strongSwan Vulnerability (CVE-2021-45079)

Source: MISC
Type: Mitigation, Vendor Advisory
https://www.strongswan.org/blog/2022/01/24/strongswan-vulnerability-(cve-2021-45079).html

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2021-45079

Vulnerable Configuration:

Configuration 1:

cpe:/a:strongswan:strongswan:*:*:*:*:*:*:*:* (Version >= 4.1.2 and < 5.9.5)

Configuration 2:

cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:11.0:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:fedoraproject:fedora:34:*:*:*:*:*:*:*

OR cpe:/a:fedoraproject:extra_packages_for_enterprise_linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:35:*:*:*:*:*:*:*

OR cpe:/a:fedoraproject:extra_packages_for_enterprise_linux:9.0:*:*:*:*:*:*:*

OR cpe:/a:fedoraproject:extra_packages_for_enterprise_linux:7.0:*:*:*:*:*:*:*

Configuration 4:

cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

OR cpe:/o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

OR cpe:/o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:strongswan:strongswan:4.2.7:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.2.6:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.2.5:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.2.4:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.2.3:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.2.2:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.2.1:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.2.0:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.1.9:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.1.8:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.1.7:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.1.6:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.1.5:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.1.4:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.1.3:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.1.2:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.0.3:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.0.0:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.1.0:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.0.2:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:4.6.4:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.0.1:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.0.4:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.1.1:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.1.2:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.1.3:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.2.0:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.3.0:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.3.3:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.5.3:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.6.1:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.6.0:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.7.0:*:*:*:*:*:*:*

OR cpe:/a:strongswan:strongswan:5.9.4:-:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:7810	P	strongswan-5.9.7-150500.3.4 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:3593	P	libfreetype6-2.6.3-7.15.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3204	P	liblouis-data-2.6.4-6.6.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94834	P	strongswan-5.8.2-150400.17.24 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95223	P	strongswan-nm-5.8.2-150400.17.24 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:119307	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:101634	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:118812	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:1531	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:119490	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:102095	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:119002	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:1813	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:119675	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:102357	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:119109	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:942	P	Security update for strongswan (Important)	2022-02-18
oval:org.opensuse.security:def:126894	P	Security update for strongswan (Important)	2022-01-26
oval:org.opensuse.security:def:127291	P	Security update for strongswan (Important)	2022-01-26
oval:org.opensuse.security:def:125729	P	Security update for strongswan (Important)	2022-01-26
oval:org.opensuse.security:def:6066	P	Security update for strongswan (Important)	2022-01-26

BACK