Vulnerabilities > Openvpn > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-10-17 CVE-2022-3761 Improper Certificate Validation vulnerability in Openvpn Connect
OpenVPN Connect versions before 3.4.0.4506 (macOS) and OpenVPN Connect before 3.4.0.3100 (Windows) allows man-in-the-middle attackers to intercept configuration profile download requests which contains the users credentials
network
high complexity
openvpn CWE-295
5.9
2021-09-23 CVE-2021-3824 Cross-site Scripting vulnerability in Openvpn Access Server
OpenVPN Access Server 2.9.0 through 2.9.4 allow remote attackers to inject arbitrary web script or HTML via the web login page URL.
network
low complexity
openvpn CWE-79
6.1
2021-06-04 CVE-2020-15077 Improper Authentication vulnerability in Openvpn Access Server
OpenVPN Access Server 2.8.7 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks.
network
high complexity
openvpn CWE-287
5.3
2017-06-27 CVE-2017-7522 NULL Pointer Dereference vulnerability in Openvpn
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to denial-of-service by authenticated remote attacker via sending a certificate with an embedded NULL character.
network
low complexity
openvpn CWE-476
6.5
2017-06-27 CVE-2017-7521 Missing Release of Resource after Effective Lifetime vulnerability in Openvpn
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().
network
high complexity
openvpn CWE-772
5.9
2017-05-26 CVE-2017-5868 CRLF Injection vulnerability in Openvpn Access Server 2.1.4
CRLF injection vulnerability in the web interface in OpenVPN Access Server 2.1.4 allows remote attackers to inject arbitrary HTTP headers and consequently conduct session fixation attacks and possibly HTTP response splitting attacks via "%0A" characters in the PATH_INFO to __session_start__/.
network
low complexity
openvpn CWE-93
6.1
2017-05-15 CVE-2017-7479 Reachable Assertion vulnerability in Openvpn
OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker.
network
low complexity
openvpn CWE-617
6.5
2017-01-31 CVE-2016-6329 Information Exposure vulnerability in Openvpn
OpenVPN, when using a 64-bit block cipher, makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTP-over-OpenVPN session using Blowfish in CBC mode, aka a "Sweet32" attack.
network
high complexity
openvpn CWE-200
5.9