UBUNTU-CVE-2023-36673

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2023-36673

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-36673.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-36673

Upstream

CVE-2023-36673

Withdrawn

2025-07-29T05:10:18Z

Published

2023-08-09T23:15:00Z

Modified

2025-07-14T06:46:22.512307Z

Severity

7.3 (High) CVSS_V3 - CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N CVSS Calculator
Ubuntu - medium

Summary

[none]

Details

An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel, even if this traffic is not generated by the VPN client, while simultaneously using plaintext DNS to look up the VPN server's IP address. This allows an adversary to trick the victim into sending traffic to arbitrary IP addresses in plaintext outside the VPN tunnel. NOTE: the tunnelcrack.mathyvanhoef.com website uses this CVE ID to refer more generally to "ServerIP attack, combined with DNS spoofing, that can leak traffic to an arbitrary IP address" rather than to only Avira Phantom VPN.

References

Affected packages

Ubuntu:22.04:LTS

openconnect

Package

Name: openconnect
Purl: pkg:deb/ubuntu/openconnect@8.20-1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

8.*

8.10-2build1

8.10-3

8.10-4

8.10-5

8.10-7

8.10-8

8.20-1

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-36673.json"

softether-vpn

Package

Name: softether-vpn
Purl: pkg:deb/ubuntu/softether-vpn@5.01.9674+git20200806+8181039+dfsg2-2build1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.01.9674+git20200806+8181039+dfsg2-2

5.01.9674+git20200806+8181039+dfsg2-2build1

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-36673.json"

Ubuntu:24.04:LTS

openconnect

Package

Name: openconnect
Purl: pkg:deb/ubuntu/openconnect@9.12-1build5?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

9.*

9.12-1

9.12-1build1

9.12-1build3

9.12-1build4

9.12-1build5

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-36673.json"

softether-vpn

Package

Name: softether-vpn
Purl: pkg:deb/ubuntu/softether-vpn@5.01.9674+git20200806+8181039+dfsg2-2build3?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.01.9674+git20200806+8181039+dfsg2-2build1

5.01.9674+git20200806+8181039+dfsg2-2build2

5.01.9674+git20200806+8181039+dfsg2-2build3

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-36673.json"

Ubuntu:25.04

openconnect

Package

Name: openconnect
Purl: pkg:deb/ubuntu/openconnect@9.12-3?arch=source&distro=plucky

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

9.*

9.12-3

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-36673.json"

softether-vpn

Package

Name: softether-vpn
Purl: pkg:deb/ubuntu/softether-vpn@5.01.9674+git20200806+8181039+dfsg3-1?arch=source&distro=plucky

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.01.9674+git20200806+8181039+dfsg3-1

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-36673.json"

Ubuntu:Pro:16.04:LTS

openconnect

Package

Name: openconnect
Purl: pkg:deb/ubuntu/openconnect@7.06-2build2?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

7.*

7.06-2build1

7.06-2build2

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-36673.json"

Ubuntu:Pro:18.04:LTS

openconnect

Package

Name: openconnect
Purl: pkg:deb/ubuntu/openconnect@7.08-3ubuntu0.18.04.2?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

7.*

7.08-1

7.08-2

7.08-3

7.08-3ubuntu0.18.04.1

7.08-3ubuntu0.18.04.2

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-36673.json"

Ubuntu:Pro:20.04:LTS

openconnect

Package

Name: openconnect
Purl: pkg:deb/ubuntu/openconnect@8.05-1?arch=source&distro=esm-apps/focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

8.*

8.02-1build1

8.05-1

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-36673.json"