Overview
Internet Key Exchange v1 main mode is vulnerable to offline dictionary or brute force attacks.
Description
The Internet Key Exchange v1 main mode is vulnerable to offline dictionary or brute force attacks. (CVE-2018-5389) It is well known, that the aggressive mode of IKEv1 PSK is vulnerable to offline dictionary or brute force attacks. For the main mode however, only an online attack against PSK authentication was thought to be feasible. |
Impact
An attacker may be able to recover a weak Pre-Shared Key. |
Solution
Use Secure Passwords |
Vendor Information
Netgear, Inc. Not Affected
Notified: July 18, 2018 Updated: August 17, 2018
Status
Not Affected
Vendor Statement
NETGEAR is aware of the CERT CC IKE Protocol Vulnerability note and the mention of NETGEAR devices being affected. Currently shipping NETGEAR hardware products are not affected by this vulnerability because they do not implement IPSEC with IKE and Pre-Shared Keys. Older models that are no longer supported have provided IPSEC functionality; if those are still in service, the CERT advisory applies. Best practice when using Pre-Shared Keys is to ensure that Pre-Shared Keys are long and cryptographically strong. None of our currently shipping hardware products are affected.
Vendor Information
We are not aware of further vendor information regarding this vulnerability.
3com Inc Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
ACCESS Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
ADTRAN Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
ARRIS Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
ASP Linux Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
AT&T Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
AVM GmbH Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Actiontec Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
AirWatch Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Alcatel-Lucent Enterprise Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Amazon Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Android Open Source Project Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Appgate Network Security Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Apple Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Arch Linux Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Arista Networks, Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Aruba Networks Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
AsusTek Computer Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Avaya, Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Belkin, Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
BlackBerry Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
BlueCat Networks, Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Broadcom Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Brocade Communication Systems Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Cambium Networks Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Check Point Software Technologies Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Cisco Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Command Software Systems Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
CoreOS Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
D-Link Systems, Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Debian GNU/Linux Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Dell Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Dell EMC Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
DesktopBSD Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Deutsche Telekom Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Devicescape Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Digi International Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
DragonFly BSD Project Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
EfficientIP SAS Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Espressif Systems Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Extreme Networks Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
F-Secure Corporation Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Fedora Project Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Force10 Networks Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
FreeS/Wan Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Fujitsu Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
GNU glibc Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Geexbox Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Gentoo Linux Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Google Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
HP Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
HTC Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
HardenedBSD Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Hitachi Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Honeywell Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Huawei Technologies Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
IBM Corporation (zseries) Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
IBM eServer Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
IBM, INC. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
InfoExpress, Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Infoblox Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Intel Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Internet Systems Consortium Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Internet Systems Consortium - DHCP Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Interniche Technologies, inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Intoto Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Joyent Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Juniper Networks Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
KAME Project Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Lancope Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Lantronix Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Lenovo Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Linksys Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Marvell Semiconductors Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
McAfee Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
MediaTek Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
MetaSwitch Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Micro Focus Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Microchip Technology Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Microsoft Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
MikroTik Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Miredo Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Mitel Networks, Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
NEC Corporation Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
NETSCOUT Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
NetBSD Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Nokia Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Nominum Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Novell, Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
OmniTI Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
OpenBSD Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
OpenBSD IPSec Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
OpenConnect Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
OpenDNS Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Openwall GNU/*/Linux Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Oracle Corporation Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Peplink Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Philips Electronics Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
PowerDNS Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Pulse Secure Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
QLogic Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
QNX Software Systems Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
QUALCOMM Incorporated Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Quagga Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Quantenna Communications Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Red Hat, Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Roku Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Ruckus Wireless Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
SUSE Linux Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Samsung Mobile Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Secure64 Software Corporation Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Sierra Wireless Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Slackware Linux Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Snort Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Sonos Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Sony Corporation Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Sourcefire Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Symantec Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Synology Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
TP-LINK Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Technicolor Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
TippingPoint Technologies Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Toshiba Commerce Solutions Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
TrueOS Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Turbolinux Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Ubiquiti Networks Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Ubuntu Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Unisys Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
VMware Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Watchguard Technologies, Inc. Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Wind River Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
Zebra Technologies Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
ZyXEL Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
aep NETWORKS Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
dnsmasq Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
eero Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
m0n0wall Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
netsnmp Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
pfSENSE Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
strongSwan Unknown
Notified: July 18, 2018 Updated: July 18, 2018
Status
Unknown
Vendor Statement
We have not received a statement from the vendor.
Vendor References
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | 8.8 | AV:N/AC:M/Au:N/C:C/I:C/A:N |
| Temporal | 7.9 | E:POC/RL:U/RC:-- |
| Environmental | 7.9 | CDP:ND/TD:ND/CR:ND/IR:ND/AR:ND |
References
Acknowledgements
Thanks to Martin Grothe, Joerg Schwenk, and Dennis Felsch for reporting this vulnerability.
This document was written by Trent Novelly.
Other Information
| CVE IDs: | CVE-2018-5389 |
| Date Public: | 2018-08-14 |
| Date First Published: | 2018-08-14 |
| Date Last Updated: | 2018-08-17 15:13 UTC |
| Document Revision: | 16 |