Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Certain configurations of IPsec, when using Encapsulating Security Payload (ESP) in tunnel mode, integrity protection at a higher layer, or Authentication Header (AH), allow remote attackers to decrypt IPSec communications by modifying the outer packet in ways that cause plaintext data from the inner packet to be returned in ICMP messages, as demonstrated using bit-flipping attacks and (1) Destination Address Rewriting, (2) a modified header length that causes portions of the packet to be interpreted as IP Options, or (3) a modified protocol field and source address.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IETF IPSEC协议封装安全负载漏洞
Vulnerability Description
IPSec是IETF(因特网工程任务组)提出的IP安全标准,它在IP层对数据包进行高强度的加密和验证,使安全服务独立于各种应用程序。 IPSec协议的设计和实现上存在某些问题,攻击者可能利用此漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A