CVE-2023-2295

Name: CVE-2023-2295
Creator: NVD / NIST
Published: 2023-05-17T23:15:09.25+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.5/10EPSS 1.58%

Last modified Jun 17, 2026

CVE-2023-2295 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. EPSS estimates a 1.58% chance of exploitation in the next 30 days.

Description

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the libreswan responder SPI as its own initiator SPI, the pluto daemon state machine crashes. No remote code execution is possible. This CVE exists because of a CVE-2023-30570 security regression for libreswan package in Red Hat Enterprise Linux 8.8 and Red Hat Enterprise Linux 9.2.

Metrics

CVSS 3.1

7.5/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Probability

1.58%

72.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-400

Affected Software

Vendor	Product	Versions
Libreswan	Libreswan	4.9-1.el8
Libreswan	Libreswan	4.9-1.el9
Redhat	Enterprise Linux	8.0
Redhat	Enterprise Linux	9.0
Redhat	Enterprise Linux Eus	8.8
Redhat	Enterprise Linux Eus	9.2
Redhat	Enterprise Linux Server Aus	8.8
Redhat	Enterprise Linux Server Aus	9.2
Redhat	Enterprise Linux Server Tus	8.8

References

https://access.redhat.com/errata/RHSA-2023:3107Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:3148Third Party Advisory
https://access.redhat.com/security/cve/CVE-2023-2295Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2189777Issue Tracking
https://access.redhat.com/errata/RHSA-2023:3107Third Party Advisory
https://access.redhat.com/errata/RHSA-2023:3148Third Party Advisory
https://access.redhat.com/security/cve/CVE-2023-2295Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2189777Issue Tracking

Timeline

Published: May 17, 2023
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2023-2295?

How severe is CVE-2023-2295?

CVE-2023-2295 has a CVSS score of 7.5/10 (HIGH severity). The EPSS model estimates a 1.58% probability of exploitation in the next 30 days.

How do I fix CVE-2023-2295?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2023-2295?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST