Описание
OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory, which allows an attacker to load an arbitrary plug-in which can be used to interact with the privileged OpenVPN interactive service.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Mailing List
- Vendor Advisory
- Vendor Advisory
- Mailing List
Уязвимые конфигурации
Одно из
EPSS
9.8 Critical
CVSS3
7.2 High
CVSS3
Дефекты
Связанные уязвимости
OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory, which allows an attacker to load an arbitrary plug-in which can be used to interact with the privileged OpenVPN interactive service.
OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be lo ...
OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory, which allows an attacker to load an arbitrary plug-in which can be used to interact with the privileged OpenVPN interactive service.
Уязвимость компонента Plug-in Handler программного обеспечения OpenVPN, позволяющая нарушителю загружать произвольные модули
EPSS
9.8 Critical
CVSS3
7.2 High
CVSS3