Описание
OpenVPN Access Server 2.7.3 to 2.8.7 allows remote attackers to trigger an assert during the user authentication phase via incorrect authentication token data in an early phase of the user authentication resulting in a denial of service.
Ссылки
- Vendor Advisory
- Release NotesVendor Advisory
- Vendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 2.7.3 (включая) до 2.8.7 (включая)
cpe:2.3:a:openvpn:openvpn_access_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.0129
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-754
CWE-617
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
OpenVPN Access Server 2.7.3 to 2.8.7 allows remote attackers to trigger an assert during the user authentication phase via incorrect authentication token data in an early phase of the user authentication resulting in a denial of service.
EPSS
Процентиль: 79%
0.0129
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-754
CWE-617