Openvpn » Openvpn Access Server : Security Vulnerabilities, CVEs, CVSS score >= 8
Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer.
Max CVSS
9.8
EPSS Score
0.52%
Published
2023-11-11
Updated
2023-11-29
OpenVPN Access Server 2.8.x before 2.8.1 allows LDAP authentication bypass (except when a user is enrolled in two-factor authentication).
Max CVSS
9.8
EPSS Score
0.43%
Published
2020-02-13
Updated
2020-05-12
OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LD_PRELOAD environment variable.
Max CVSS
9.0
EPSS Score
0.61%
Published
2006-04-06
Updated
2020-05-12
3 vulnerabilities found