Security Advisory

CVE-2021-41990

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-18 13:44:50

Last updated 2024-08-04 03:22:25

Assigner mitre

State PUBLISHED

Description

The gmp plugin in strongSwan before 5.9.4 has a remote integer overflow via a crafted certificate with an RSASSA-PSS signature. For example, this can be triggered by an unrelated self-signed CA certificate sent by an initiator. Remote code execution cannot occur.

← Browse all CVEs View on cve.org ↗