Vulnerabilities > Openvpn > Openvpn Access Server > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-11-11 CVE-2023-46850 Use After Free vulnerability in multiple products
Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer.
network
low complexity
openvpn debian fedoraproject CWE-416
critical
9.8
2006-04-06 CVE-2006-1629 Remote Code Execution vulnerability in Openvpn and Openvpn Access Server
OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LD_PRELOAD environment variable.
network
low complexity
openvpn
critical
9.0