Vulnerabilities > CVE-2020-7224 - Unspecified vulnerability in Aviatrix Openvpn
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
The Aviatrix OpenVPN client through 2.5.7 on Linux, macOS, and Windows is vulnerable when OpenSSL parameters are altered from the issued value set; the parameters could allow unauthorized third-party libraries to load.
Vulnerable Configurations
References
- https://docs.aviatrix.com/#security-bulletin
- https://docs.aviatrix.com/#security-bulletin
- https://docs.aviatrix.com/HowTos/security_bulletin_article.html
- https://docs.aviatrix.com/HowTos/security_bulletin_article.html
- https://docs.aviatrix.com/HowTos/security_bulletin_article.html#article-avxsb-00001
- https://docs.aviatrix.com/HowTos/security_bulletin_article.html#article-avxsb-00001