Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Openvpn
(Openvpn)| Repositories | https://github.com/OpenVPN/openvpn |
| #Vulnerabilities | 37 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2006-05-05 | CVE-2006-2229 | OpenVPN 2.0.7 and earlier, when configured to use the --management option with an IP that is not 127.0.0.1, uses a cleartext password for TCP sessions to the management interface, which might allow remote attackers to view sensitive information or cause a denial of service. | Openvpn, Openvpn_access_server | N/A | ||
| 2006-04-06 | CVE-2006-1629 | OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LD_PRELOAD environment variable. | Openvpn, Openvpn_access_server | N/A | ||
| 2005-11-02 | CVE-2005-3409 | OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service (segmentation fault) by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler. | Openvpn, Openvpn_access_server | N/A | ||
| 2005-11-01 | CVE-2005-3393 | Format string vulnerability in the foreign_option function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option. | Openvpn, Openvpn_access_server | N/A | ||
| 2017-06-27 | CVE-2017-7521 | OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension(). | Openvpn | 5.9 | ||
| 2017-06-27 | CVE-2017-7520 | OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to denial-of-service and/or possibly sensitive memory leak triggered by man-in-the-middle attacker. | Openvpn | 7.4 | ||
| 2017-06-27 | CVE-2017-7508 | OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service when receiving malformed IPv6 packet. | Openvpn | 7.5 | ||
| 2017-05-15 | CVE-2017-7479 | OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker. | Openvpn | 6.5 | ||
| 2017-01-31 | CVE-2016-6329 | OpenVPN, when using a 64-bit block cipher, makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTP-over-OpenVPN session using Blowfish in CBC mode, aka a "Sweet32" attack. | Openvpn | 5.9 | ||
| 2018-05-01 | CVE-2018-9336 | openvpnserv.exe (aka the interactive service helper) in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory by sending a malformed request to the interactive service. This could cause a denial-of-service through memory corruption or possibly have unspecified other impact including privilege escalation. | Openvpn, Slackware_linux | 7.8 |