GHSA-3wwj-66cm-595v

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.

Ссылки

EPSS

Процентиль: 87%

0.03313

Низкий

7.5 High

CVSS3

CVE ID

CVE-2017-7478

Дефекты

CWE-20

CWE-617

Связанные уязвимости

CVE-2017-7478

CVSS3: 7.5

ubuntu

около 8 лет назад

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.

CVE-2017-7478

CVSS3: 7.5

nvd

около 8 лет назад

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.

CVE-2017-7478

CVSS3: 7.5

debian

около 8 лет назад

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Deni ...

openSUSE-SU-2017:1638-1

suse-cvrf

почти 8 лет назад

Security update for openvpn

SUSE-SU-2017:1622-1

suse-cvrf

почти 8 лет назад

Security update for openvpn

EPSS

Процентиль: 87%

0.03313

Низкий

7.5 High

CVSS3

CVE ID

CVE-2017-7478

Дефекты

CWE-20

CWE-617