Vpn

vulnerabilities 2026-04-02 High
15-Year-Old strongSwan Integer Underflow Lets Unauthenticated Attackers Crash VPN Gateways
CVE-2026-25075 is an integer underflow in strongSwan's EAP-TTLS AVP parser that lets remote, unauthenticated attackers crash the charon IKE daemon — affecting every version since 4.5.0.
strongswan vpn ipsec cve-2026-25075 denial-of-service

15-Year-Old strongSwan Integer Underflow Lets Unauthenticated Attackers Crash VPN Gateways