CVE-2013-6466 [Medium] | Denial of Service in Openswan

CVE-2013-6466 is rated Moderate Risk (51/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 2.66%). EPSS rose +1.66% over the last day, indicating growing attacker interest. Review affected assets and schedule remediation.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2026-06-15	1.01%	2.66%	+1.66%
2	2025-12-03	1.10%	1.01%	-0.10%
3	2025-04-24	—	1.10%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2026-06-15

1.01%

2.66%

+1.66%

2025-12-03

1.10%

1.01%

-0.10%

2025-04-24

—

1.10%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
5.0	2.0	MEDIUM	`AV:N/AC:L/Au:N/C:N/I:N/A:P` Click to expand Access vector (AV:N) Can be exploited remotely over network reachability. Access complexity (AC:L) Exploitation conditions are straightforward and predictable. Authentication (AU:N) No authentication is required. Confidentiality impact (C:N) No confidentiality impact. Integrity impact (I:N) No integrity impact. Availability impact (A:P) Partial availability impact.	10.0	2.9	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

5.0

2.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:N/A:P Click to expand

Access vector (AV:N): Can be exploited remotely over network reachability.
Access complexity (AC:L): Exploitation conditions are straightforward and predictable.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:N): No confidentiality impact.
Integrity impact (I:N): No integrity impact.
Availability impact (A:P): Partial availability impact.

10.0

2.9

[email protected]

OS Trackers for CVE-2013-6466

vendor	priority	summary	link
`gentoo`	normal	CVE-2013-6466: 1 GLSA(s) (201411-07), 1 atom(s) (net-misc/openswan); latest impact normal.	https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2013-6466
`redhat`	medium	—	https://access.redhat.com/security/cve/CVE-2013-6466
`ubuntu`	medium	CVE-2013-6466 medium priority: Ubuntu including 1 source packages (openswan), 17 status rows across 17 suites (artful, bionic, cosmic, disco, lucid, precise, quantal, raring, saucy, trusty, upstream, utopic, vivid, wily, xenial, yakkety, zesty): DNE 11, ignored 5, needs-triage 1.	https://ubuntu.com/security/CVE-2013-6466

Affected software / configurations for CVE-2013-6466

Vendor	Product	Version	Raw CPE
xelerance	openswan	<= 2.6.39	cpe:2.3:a:xelerance:openswan::::::::
xelerance	openswan	2.3.0	cpe:2.3:a:xelerance:openswan:2.3.0:::::::*
xelerance	openswan	2.3.1	cpe:2.3:a:xelerance:openswan:2.3.1:::::::*
xelerance	openswan	2.4.0	cpe:2.3:a:xelerance:openswan:2.4.0:::::::*
xelerance	openswan	2.4.1	cpe:2.3:a:xelerance:openswan:2.4.1:::::::*
xelerance	openswan	2.4.2	cpe:2.3:a:xelerance:openswan:2.4.2:::::::*
xelerance	openswan	2.4.3	cpe:2.3:a:xelerance:openswan:2.4.3:::::::*
xelerance	openswan	2.4.4	cpe:2.3:a:xelerance:openswan:2.4.4:::::::*
xelerance	openswan	2.4.5	cpe:2.3:a:xelerance:openswan:2.4.5:::::::*
xelerance	openswan	2.4.6	cpe:2.3:a:xelerance:openswan:2.4.6:::::::*
xelerance	openswan	2.4.7	cpe:2.3:a:xelerance:openswan:2.4.7:::::::*
xelerance	openswan	2.4.8	cpe:2.3:a:xelerance:openswan:2.4.8:::::::*
xelerance	openswan	2.4.9	cpe:2.3:a:xelerance:openswan:2.4.9:::::::*
xelerance	openswan	2.4.10	cpe:2.3:a:xelerance:openswan:2.4.10:::::::*
xelerance	openswan	2.4.11	cpe:2.3:a:xelerance:openswan:2.4.11:::::::*
xelerance	openswan	2.4.12	cpe:2.3:a:xelerance:openswan:2.4.12:::::::*
xelerance	openswan	2.4.13	cpe:2.3:a:xelerance:openswan:2.4.13:::::::*
xelerance	openswan	2.5.0	cpe:2.3:a:xelerance:openswan:2.5.0:::::::*
xelerance	openswan	2.5.0	cpe:2.3:a:xelerance:openswan:2.5.0:sbs4::::::
xelerance	openswan	2.5.0	cpe:2.3:a:xelerance:openswan:2.5.0:sbs5::::::
xelerance	openswan	2.5.01	cpe:2.3:a:xelerance:openswan:2.5.01:::::::*
xelerance	openswan	2.5.02	cpe:2.3:a:xelerance:openswan:2.5.02:::::::*
xelerance	openswan	2.5.03	cpe:2.3:a:xelerance:openswan:2.5.03:::::::*
xelerance	openswan	2.5.04	cpe:2.3:a:xelerance:openswan:2.5.04:::::::*
xelerance	openswan	2.5.05	cpe:2.3:a:xelerance:openswan:2.5.05:::::::*
xelerance	openswan	2.5.06	cpe:2.3:a:xelerance:openswan:2.5.06:::::::*
xelerance	openswan	2.5.07	cpe:2.3:a:xelerance:openswan:2.5.07:::::::*
xelerance	openswan	2.5.08	cpe:2.3:a:xelerance:openswan:2.5.08:::::::*
xelerance	openswan	2.5.09	cpe:2.3:a:xelerance:openswan:2.5.09:::::::*
xelerance	openswan	2.5.10	cpe:2.3:a:xelerance:openswan:2.5.10:::::::*
xelerance	openswan	2.5.11	cpe:2.3:a:xelerance:openswan:2.5.11:::::::*
xelerance	openswan	2.5.12	cpe:2.3:a:xelerance:openswan:2.5.12:::::::*
xelerance	openswan	2.5.13	cpe:2.3:a:xelerance:openswan:2.5.13:::::::*
xelerance	openswan	2.5.14	cpe:2.3:a:xelerance:openswan:2.5.14:::::::*
xelerance	openswan	2.5.15	cpe:2.3:a:xelerance:openswan:2.5.15:::::::*
xelerance	openswan	2.5.16	cpe:2.3:a:xelerance:openswan:2.5.16:::::::*
xelerance	openswan	2.5.17	cpe:2.3:a:xelerance:openswan:2.5.17:::::::*
xelerance	openswan	2.5.18	cpe:2.3:a:xelerance:openswan:2.5.18:::::::*
xelerance	openswan	2.6.01	cpe:2.3:a:xelerance:openswan:2.6.01:::::::*
xelerance	openswan	2.6.02	cpe:2.3:a:xelerance:openswan:2.6.02:::::::*
xelerance	openswan	2.6.03	cpe:2.3:a:xelerance:openswan:2.6.03:::::::*
xelerance	openswan	2.6.04	cpe:2.3:a:xelerance:openswan:2.6.04:::::::*
xelerance	openswan	2.6.05	cpe:2.3:a:xelerance:openswan:2.6.05:::::::*
xelerance	openswan	2.6.06	cpe:2.3:a:xelerance:openswan:2.6.06:::::::*
xelerance	openswan	2.6.07	cpe:2.3:a:xelerance:openswan:2.6.07:::::::*
xelerance	openswan	2.6.08	cpe:2.3:a:xelerance:openswan:2.6.08:::::::*
xelerance	openswan	2.6.09	cpe:2.3:a:xelerance:openswan:2.6.09:::::::*
xelerance	openswan	2.6.10	cpe:2.3:a:xelerance:openswan:2.6.10:::::::*
xelerance	openswan	2.6.11	cpe:2.3:a:xelerance:openswan:2.6.11:::::::*
xelerance	openswan	2.6.12	cpe:2.3:a:xelerance:openswan:2.6.12:::::::*
xelerance	openswan	2.6.13	cpe:2.3:a:xelerance:openswan:2.6.13:::::::*
xelerance	openswan	2.6.14	cpe:2.3:a:xelerance:openswan:2.6.14:::::::*
xelerance	openswan	2.6.15	cpe:2.3:a:xelerance:openswan:2.6.15:::::::*
xelerance	openswan	2.6.16	cpe:2.3:a:xelerance:openswan:2.6.16:::::::*
xelerance	openswan	2.6.17	cpe:2.3:a:xelerance:openswan:2.6.17:::::::*
xelerance	openswan	2.6.18	cpe:2.3:a:xelerance:openswan:2.6.18:::::::*
xelerance	openswan	2.6.19	cpe:2.3:a:xelerance:openswan:2.6.19:::::::*
xelerance	openswan	2.6.20	cpe:2.3:a:xelerance:openswan:2.6.20:::::::*
xelerance	openswan	2.6.21	cpe:2.3:a:xelerance:openswan:2.6.21:::::::*
xelerance	openswan	2.6.22	cpe:2.3:a:xelerance:openswan:2.6.22:::::::*
xelerance	openswan	2.6.23	cpe:2.3:a:xelerance:openswan:2.6.23:::::::*
xelerance	openswan	2.6.24	cpe:2.3:a:xelerance:openswan:2.6.24:::::::*
xelerance	openswan	2.6.25	cpe:2.3:a:xelerance:openswan:2.6.25:::::::*
xelerance	openswan	2.6.26	cpe:2.3:a:xelerance:openswan:2.6.26:::::::*
xelerance	openswan	2.6.27	cpe:2.3:a:xelerance:openswan:2.6.27:::::::*
xelerance	openswan	2.6.28	cpe:2.3:a:xelerance:openswan:2.6.28:::::::*
xelerance	openswan	2.6.29	cpe:2.3:a:xelerance:openswan:2.6.29:::::::*
xelerance	openswan	2.6.30	cpe:2.3:a:xelerance:openswan:2.6.30:::::::*
xelerance	openswan	2.6.31	cpe:2.3:a:xelerance:openswan:2.6.31:::::::*
xelerance	openswan	2.6.32	cpe:2.3:a:xelerance:openswan:2.6.32:::::::*
xelerance	openswan	2.6.33	cpe:2.3:a:xelerance:openswan:2.6.33:::::::*
xelerance	openswan	2.6.34	cpe:2.3:a:xelerance:openswan:2.6.34:::::::*
xelerance	openswan	2.6.35	cpe:2.3:a:xelerance:openswan:2.6.35:::::::*
xelerance	openswan	2.6.36	cpe:2.3:a:xelerance:openswan:2.6.36:::::::*
xelerance	openswan	2.6.37	cpe:2.3:a:xelerance:openswan:2.6.37:::::::*
xelerance	openswan	2.6.38	cpe:2.3:a:xelerance:openswan:2.6.38:::::::*

References for CVE-2013-6466

URL	Tags
http://rhn.redhat.com/errata/RHSA-2014-0185.html
http://www.debian.org/security/2014/dsa-2893
http://www.securityfocus.com/bid/65155
https://cert.vde.com/en-us/advisories/vde-2017-001
https://exchange.xforce.ibmcloud.com/vulnerabilities/90524
https://libreswan.org/security/CVE-2013-6467/CVE-2013-6467.txt	Vendor Advisory

URL

CVE-2013-6466

Exploit prediction scoring system (EPSS) score for CVE-2013-6466

Common vulnerability scoring system (CVSS) metrics for CVE-2013-6466

Weakness enumeration for CVE-2013-6466

OS Trackers for CVE-2013-6466

NVD evaluator notes for CVE-2013-6466

Affected software / configurations for CVE-2013-6466

References for CVE-2013-6466