| Title | Ruijie Networks EG306MG EG_3.0(1)B11P309 Misconfiguration |
|---|
| Description | In Ruijie Networks EG306MG EG_3.0(1)B11P309 PoE Gateway, the i_dont_care_about_security_and_use_aggressive_mode_psk property is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK. |
|---|
| Source | ⚠️ https://www.notion.so/23e54a1113e78049aba1f9f586c67764 |
|---|
| User | TPCHECKER (UID 88463) |
|---|
| Submission | 07/28/2025 20:11 (11 months ago) |
|---|
| Moderation | 08/08/2025 17:42 (11 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 319265 [Ruijie EG306MG 3.0(1)B11P309 strongSwan /etc/strongswan.conf missing encryption] |
|---|
| Points | 16 |
|---|