Описание
OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase
Ссылки
- Broken Link
- Mailing List
Уязвимые конфигурации
Конфигурация 1Версия от 2.6.1 (включая) до 2.6.13 (включая)
cpe:2.3:a:openvpn:openvpn:*:*:*:*:community:*:*:*
EPSS
Процентиль: 35%
0.00137
Низкий
7.5 High
CVSS3
Дефекты
CWE-754
CWE-754
Связанные уязвимости
CVSS3: 7.5
ubuntu
3 месяца назад
OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase
CVSS3: 7.5
debian
3 месяца назад
OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 ...
CVSS3: 7.5
github
3 месяца назад
OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase
EPSS
Процентиль: 35%
0.00137
Низкий
7.5 High
CVSS3
Дефекты
CWE-754
CWE-754