CVE-2025-11955
Description
Incorrect validation of OCSP certificates vulnerability in TheGreenBow VPN, versions 7.5 and 7.6. During the IKEv2 authentication step, the OCSP-enabled VPN client establishes the tunnel even if it does not receive an OCSP response or if the OCSP response signature is invalid.
Is your site exposed to CVE-2025-11955?
Run a free security scan — no signup, results in seconds.
Weakness Type (CWE)
References
Frequently Asked Questions
What is CVE-2025-11955? +
How do I check if I'm vulnerable to CVE-2025-11955? +
Related Vulnerabilities
A MongoDB server under specific conditions running on Linux with TLS and CRL revocation status checking enabled, fails to check …
Check for certificate revocation only considers the first matching CRL and ignores other valid CRLs of the same CA in …
IBM Cognos Analytics Mobile (iOS) 1.1.0 through 1.1.22 is vulnerable to authentication bypass by using the Local Authentication Framework library …
notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications. This issue …