Описание
Unspecified vulnerability in OpenConnect before 2.23 allows remote AnyConnect SSL VPN servers to cause a denial of service (application crash) via a 404 HTTP status code.
Комментарий
Per reference link: "OpenConnect is not officially supported by, or associated in any way with, Cisco Systems"
Уязвимые конфигурации
Конфигурация 1Версия до 2.22 (включая)
Одно из
cpe:2.3:a:infradead:openconnect:*:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:1.00:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:1.10:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:1.20:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:1.30:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:1.40:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:2.00:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:2.01:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:2.10:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:2.11:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:2.12:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:2.20:*:*:*:*:*:*:*
cpe:2.3:a:infradead:openconnect:2.21:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00305
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
ubuntu
больше 15 лет назад
Unspecified vulnerability in OpenConnect before 2.23 allows remote AnyConnect SSL VPN servers to cause a denial of service (application crash) via a 404 HTTP status code.
debian
больше 15 лет назад
Unspecified vulnerability in OpenConnect before 2.23 allows remote Any ...
github
больше 3 лет назад
Unspecified vulnerability in OpenConnect before 2.23 allows remote AnyConnect SSL VPN servers to cause a denial of service (application crash) via a 404 HTTP status code.
EPSS
Процентиль: 53%
0.00305
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-noinfo