CVE-2022-40617
HIGHstrongSwan < 5.9.8 - Denial of Service in Revocation Plugin via Malicious CRL/OCSP URL
Title source: llmDescription
strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing after the initial TCP handshake, or sends an excessive amount of application data.
References (2)
Core 2
Core References
Various Sources
https://www.strongswan.org/blog/2022/10/03/strongswan-vulnerability-%28cve-2022-40617%29.html
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J3GAYIOCSLU57C45CO4UE4IV4JZE4W3L/
Scores
CVSS v3
7.5
EPSS
0.0022
EPSS Percentile
44.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-400
Status
published
Products (10)
canonical/ubuntu_linux
14.04
canonical/ubuntu_linux
16.04
canonical/ubuntu_linux
18.04
canonical/ubuntu_linux
20.04
canonical/ubuntu_linux
22.04
debian/debian_linux
10.0
debian/debian_linux
11.0
fedoraproject/fedora
37
stormshield/stormshield_network_security
3.11.1 - 3.11.20
strongswan/strongswan
< 5.9.8
Published
Oct 31, 2022
Tracked Since
Feb 18, 2026