GHSA-3wwj-66cm-595v

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.

Ссылки

EPSS

Процентиль: 91%

0.06902

Низкий

7.5 High

CVSS3

CVE ID

CVE-2017-7478

Дефекты

CWE-20

CWE-617

Связанные уязвимости

CVE-2017-7478

CVSS3: 7.5

ubuntu

больше 8 лет назад

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.

CVE-2017-7478

CVSS3: 7.5

nvd

больше 8 лет назад

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.

CVE-2017-7478

CVSS3: 7.5

debian

больше 8 лет назад

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Deni ...

openSUSE-SU-2017:1638-1

suse-cvrf

больше 8 лет назад

Security update for openvpn

SUSE-SU-2017:1622-1

suse-cvrf

больше 8 лет назад

Security update for openvpn

EPSS

Процентиль: 91%

0.06902

Низкий

7.5 High

CVSS3

CVE ID

CVE-2017-7478

Дефекты

CWE-20

CWE-617