CVE-2019-5613
Severity CVSS v4.0:
Pending analysis
Type:
CWE-345
Insufficient Verification of Data Authenticity
Publication date:
18/02/2020
Last modified:
05/03/2020
Description
In FreeBSD 12.0-RELEASE before 12.0-RELEASE-p13, a missing check in the ipsec packet processor allows reinjection of an old packet to be accepted by the ipsec endpoint. Depending on the higher-level protocol in use over ipsec, this could allow an action to be repeated.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:freebsd:freebsd:12.0:-:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:12.0:p1:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:12.0:p10:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:12.0:p11:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:12.0:p12:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:12.0:p2:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:12.0:p3:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:12.0:p4:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:12.0:p6:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:12.0:p7:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:12.0:p8:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:12.0:p9:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page