CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-5361

programs/pluto/ikev1.c in libreswan before 3.17 retransmits in initial-responder states, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed UDP packet. NOTE: the original behavior complies with the IKEv1 protocol, but has a required security update from the libreswan vendor; as of 2016-06-10, it is expected that several other IKEv1 implementations will have vendor-required security updates, with separate CVE IDs assigned to each.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 76.3%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2016-5361

Libreswan » Libreswan » Version: 3.0

cpe:2.3:a:libreswan:libreswan:3.0
Libreswan » Libreswan » Version: 3.1

cpe:2.3:a:libreswan:libreswan:3.1
Libreswan » Libreswan » Version: 3.10

cpe:2.3:a:libreswan:libreswan:3.10
Libreswan » Libreswan » Version: 3.11

cpe:2.3:a:libreswan:libreswan:3.11
Libreswan » Libreswan » Version: 3.12

cpe:2.3:a:libreswan:libreswan:3.12
Libreswan » Libreswan » Version: 3.14

cpe:2.3:a:libreswan:libreswan:3.14
Libreswan » Libreswan » Version: 3.16

cpe:2.3:a:libreswan:libreswan:3.16
Libreswan » Libreswan » Version: 3.2

cpe:2.3:a:libreswan:libreswan:3.2
Libreswan » Libreswan » Version: 3.3

cpe:2.3:a:libreswan:libreswan:3.3
Libreswan » Libreswan » Version: 3.4

cpe:2.3:a:libreswan:libreswan:3.4
Libreswan » Libreswan » Version: 3.5

cpe:2.3:a:libreswan:libreswan:3.5
Libreswan » Libreswan » Version: 3.6

cpe:2.3:a:libreswan:libreswan:3.6
Libreswan » Libreswan » Version: 3.7

cpe:2.3:a:libreswan:libreswan:3.7
Libreswan » Libreswan » Version: 3.9

cpe:2.3:a:libreswan:libreswan:3.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-5361

Products

Pricing

Contact Us