CVE-2021-45079
Description
A missing check in strongSwan's EAP client code lets a rogue server send an early EAP-Success, bypassing client and potentially server authentication, or causing denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A missing check in strongSwan's EAP client code lets a rogue server send an early EAP-Success, bypassing client and potentially server authentication, or causing denial of service.
Vulnerability
In strongSwan before version 5.9.5, the EAP client code incorrectly handles early EAP-Success messages. When using EAP authentication (RFC 3748), the protocol expects a specific sequence of messages; an early EAP-Success sent by a responder before proper authentication causes the client to either crash the IKE daemon or conclude the EAP method prematurely. This affects all strongSwan versions since 4.1.2, depending on the configuration [1].
Exploitation
An attacker acting as a malicious VPN responder (server) can send an EAP-Success message before the EAP authentication exchange is complete, without having actually authenticated the client. No prior authentication or special privileges are required beyond network position to act as a rogue server. The exploitation can be triggered without user interaction beyond the client initiating an IKE_AUTH exchange [1].
Impact
In configurations using EAP-only authentication for IKEv2 or EAP methods with mutual authentication, a successful attack can bypass client authentication and, in some scenarios, even server authentication. This leads to unauthorized access to the VPN or resource, compromising confidentiality and integrity. Alternatively, the early message can cause a denial-of-service by crashing the IKE daemon [1].
Mitigation
strongSwan version 5.9.5 fixes the vulnerability. Users should update to 5.9.5 or later. If upgrading is not immediately possible, no workaround has been disclosed in the available references [1].
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
42(expand)+ 1 more
- (no CPE)
- (no CPE)range: <5.9.5
- osv-coords40 versionspkg:rpm/opensuse/strongswan&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/strongswan&distro=openSUSE%20Tumbleweedpkg:rpm/suse/strongswan&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/strongswan&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/strongswan&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP3pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/strongswan&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP3pkg:rpm/suse/strongswan&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/strongswan&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/strongswan&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/strongswan&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/strongswan&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/strongswan&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208pkg:rpm/suse/strongswan&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 5.8.2-11.24.1+ 39 more
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.9.5-1.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.8.2-4.17.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.8.2-4.17.1
- (no CPE)range: < 5.8.2-4.17.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.8.2-4.17.1
- (no CPE)range: < 5.8.2-4.17.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 4.4.0-6.36.12.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 4.4.0-6.36.12.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.8.2-4.17.1
- (no CPE)range: < 5.8.2-4.17.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.8.2-4.17.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.8.2-4.17.1
- (no CPE)range: < 5.8.2-4.17.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.8.2-11.24.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.1.3-26.20.1
- (no CPE)range: < 5.1.3-26.20.1
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
1News mentions
0No linked articles in our index yet.