Vulnerabilities > Openvpn > Openvpn > 2.0.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-03-16 | CVE-2018-7544 | Use of Externally-Controlled Format String vulnerability in Openvpn A cross-protocol scripting issue was discovered in the management interface in OpenVPN through 2.4.5. | 9.1 |
2014-12-03 | CVE-2014-8104 | Resource Management Errors vulnerability in multiple products OpenVPN 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, and 2.3.x before 2.3.6 allows remote authenticated users to cause a denial of service (server crash) via a small control channel packet. | 6.8 |
2006-05-05 | CVE-2006-2229 | Denial-Of-Service vulnerability in Openvpn and Openvpn Access Server OpenVPN 2.0.7 and earlier, when configured to use the --management option with an IP that is not 127.0.0.1, uses a cleartext password for TCP sessions to the management interface, which might allow remote attackers to view sensitive information or cause a denial of service. | 4.0 |
2006-04-06 | CVE-2006-1629 | Remote Code Execution vulnerability in Openvpn and Openvpn Access Server OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LD_PRELOAD environment variable. | 9.0 |