Vulnerabilities > Infradead

DATE	CVE	VULNERABILITY TITLE	RISK
2020-05-12	CVE-2020-12823	Classic Buffer Overflow vulnerability in multiple products OpenConnect 8.09 has a buffer overflow, causing a denial of service (application crash) or possibly unspecified other impact, via crafted certificate data to get_cert_name in gnutls.c. network low complexity infradead fedoraproject debian opensuse CWE-120 critical	9.8
2020-04-23	CVE-2020-12105	Improper Handling of Exceptional Conditions vulnerability in multiple products OpenConnect through 8.08 mishandles negative return values from X509_check_ function calls, which might assist attackers in performing man-in-the-middle attacks. network high complexity infradead opensuse CWE-755	5.9
2020-02-13	CVE-2013-7098	Out-of-bounds Write vulnerability in Infradead Openconnect OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection. network low complexity infradead CWE-787 critical	9.8
2019-09-17	CVE-2019-16239	Classic Buffer Overflow vulnerability in multiple products process_http_response in OpenConnect before 8.05 has a Buffer Overflow when a malicious server uses HTTP chunked encoding with crafted chunk sizes. network low complexity infradead fedoraproject debian canonical opensuse CWE-120 critical	9.8

Vulnerabilities > Infradead {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Infradead"}]}