| Titel | Ruijie Networks EG306MG EG_3.0(1)B11P309 Misconfiguration |
|---|
| Beschreibung | In Ruijie Networks EG306MG EG_3.0(1)B11P309 PoE Gateway, the i_dont_care_about_security_and_use_aggressive_mode_psk property is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK. |
|---|
| Quelle | ⚠️ https://www.notion.so/23e54a1113e78049aba1f9f586c67764 |
|---|
| Benutzer | TPCHECKER (UID 88463) |
|---|
| Einreichung | 28.07.2025 20:11 (vor 11 Monaten) |
|---|
| Moderieren | 08.08.2025 17:42 (11 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 319265 [Ruijie EG306MG 3.0(1)B11P309 strongSwan /etc/strongswan.conf schwache Verschlüsselung] |
|---|
| Punkte | 16 |
|---|