CVE-2023-30570
HIGHLibreswan 3.28-4.10 - Unauthenticated Denial of Service via IKEv1 Aggressive Mode Packets
Title source: llmDescription
pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28.
References (1)
Core 1
Core References
Mitigation, Vendor Advisory
https://libreswan.org/security/CVE-2023-30570/CVE-2023-30570.txt
Scores
CVSS v3
7.5
EPSS
0.0118
EPSS Percentile
63.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-400
Status
published
Products (1)
libreswan/libreswan
3.28 - 4.10
Published
May 29, 2023
Tracked Since
Feb 18, 2026