Vulnerabilities > CVE-2024-27459 - Out-of-bounds Write vulnerability in Openvpn

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
openvpn
CWE-787

Summary

The interactive service in OpenVPN 2.6.9 and earlier allows an attacker to send data causing a stack overflow which can be used to execute arbitrary code with more privileges.

Vulnerable Configurations

Part Description Count
Application
Openvpn
241

Common Weakness Enumeration (CWE)