Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2018-7544

Опубликовано: 16 мар. 2018
Источник: nvd
CVSS3: 9.1
CVSS2: 6.4
EPSS Низкий

Описание

A cross-protocol scripting issue was discovered in the management interface in OpenVPN through 2.4.5. When this interface is enabled over TCP without a password, and when no other clients are connected to this interface, attackers can execute arbitrary management commands, obtain sensitive information, or cause a denial of service (SIGTERM) by triggering XMLHttpRequest actions in a web browser. This is demonstrated by a multipart/form-data POST to http://localhost:23000 with a "signal SIGTERM" command in a TEXTAREA element. NOTE: The vendor disputes that this is a vulnerability. They state that this is the result of improper configuration of the OpenVPN instance rather than an intrinsic vulnerability, and now more explicitly warn against such configurations in both the management-interface documentation, and with a runtime warning

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:openvpn:openvpn:*:*:*:*:*:*:*:*
Версия до 2.4.5 (включая)

EPSS

Процентиль: 60%
0.00398
Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

CWE-134

Связанные уязвимости

ubuntu логотип

CVE-2018-7544

CVSS3: 9.1
ubuntu
больше 7 лет назад

** DISPUTED ** A cross-protocol scripting issue was discovered in the management interface in OpenVPN through 2.4.5. When this interface is enabled over TCP without a password, and when no other clients are connected to this interface, attackers can execute arbitrary management commands, obtain sensitive information, or cause a denial of service (SIGTERM) by triggering XMLHttpRequest actions in a web browser. This is demonstrated by a multipart/form-data POST to http://localhost:23000 with a "signal SIGTERM" command in a TEXTAREA element. NOTE: The vendor disputes that this is a vulnerability. They state that this is the result of improper configuration of the OpenVPN instance rather than an intrinsic vulnerability, and now more explicitly warn against such configurations in both the management-interface documentation, and with a runtime warning.

debian логотип

CVE-2018-7544

CVSS3: 9.1
debian
больше 7 лет назад

A cross-protocol scripting issue was discovered in the management inte ...

github логотип

GHSA-9vqg-v7fx-9jvr

CVSS3: 9.1
github
около 3 лет назад

** DISPUTED ** A cross-protocol scripting issue was discovered in the management interface in OpenVPN through 2.4.5. When this interface is enabled over TCP without a password, and when no other clients are connected to this interface, attackers can execute arbitrary management commands, obtain sensitive information, or cause a denial of service (SIGTERM) by triggering XMLHttpRequest actions in a web browser. This is demonstrated by a multipart/form-data POST to http://localhost:23000 with a "signal SIGTERM" command in a TEXTAREA element. NOTE: The vendor disputes that this is a vulnerability. They state that this is the result of improper configuration of the OpenVPN instance rather than an intrinsic vulnerability, and now more explicitly warn against such configurations in both the management-interface documentation, and with a runtime warning.

suse-cvrf логотип

SUSE-SU-2021:1576-1

suse-cvrf
около 4 лет назад

Security update for openvpn

suse-cvrf логотип

SUSE-SU-2021:14723-1

suse-cvrf
около 4 лет назад

Security update for openvpn-openssl1

EPSS

Процентиль: 60%
0.00398
Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

CWE-134