CVE-2026-25075NVD

Vulnerability Summary

strongSwan versions 4.5.0 prior to 6.0.5 contain an integer underflow vulnerability in the EAP-TTLS AVP parser that allows unauthenticated remote attackers to cause a denial of service by sending crafted AVP data with invalid length fields during IKEv2 authentication. Attackers can exploit the failure to validate AVP length fields before subtraction to trigger excessive memory allocation or NULL pointer dereference, crashing the charon IKE daemon.

Severity Level

HIGH(7.5)

Published Date

Mar 23, 2026

Last Modified

May 6, 2026

Exploitation Status

????

EPSS Score (30-Day)

0.25%Probability

Root Weakness (CWE)

N/A

CVSS v3.1 Base Metrics

Attack VectorNetwork

Attack ComplexityLow

Privileges RequiredNone

User InteractionNone

ScopeUnchanged

ConfidentialityNone

IntegrityNone

AvailabilityHigh

External References

https://www.strongswan.org/blog/2026/03/23/strongswan-vulnerability-(cve-2026-25075).html
https://www.strongswan.org/blog/2026/03/23/strongswan-6.0.5-released.html
https://y637f9qq2x.com/posts/cve-2026-25075/
https://www.vulncheck.com/advisories/strongswan-eap-ttls-avp-parsing-integer-underflow

Critical Alert 2 Active Exploits Detected Today

Critical Alert

CVE Watchtower

CVE-2026-25075NVD

Vulnerability Summary

External References