strongSwan CVE-2026-25075: Integer Underflow in VPN Authentication
ATT&CK techniques detected
T1190Exploit Public-Facing Application
97%
"users to upgrade as soon as possible. our affected cosmos customers were notified of this vulnerability shortly after the vendor disclosure, and we continue to monitor for new threats to vpn infrastructure. if you ' re interested in learning more about managed services delivered …"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1190Exploit Public-Facing Application
56%
"strongswan cve - 2026 - 25075 : integer underflow in vpn authentication tl ; dr ; bishop fox researchers took a deep dive into a new strongswan vulnerability that allows unauthenticated attackers to take vpn services offline, with the bug impacting versions going back over 15 yea…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
Bishop Fox researchers took a deep dive into a new strongSwan vulnerability that allows unauthenticated attackers to take VPN services offline. We created an easy tool to test your strongSwan deployment & recommend upgrading to version 6.0.5 and later.