CVE-2017-7478

Опубликовано: 15 мая 2017

Источник: ubuntu

Приоритет: high

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.

Релиз	Статус	Примечание
devel	not-affected	2.4.0-5ubuntu1
esm-infra-legacy/trusty	not-affected
esm-infra/xenial	not-affected
precise	not-affected
precise/esm	not-affected
trusty	not-affected
trusty/esm	not-affected
upstream	released	2.4.0-5
vivid/stable-phone-overlay	not-affected
vivid/ubuntu-core	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 87%

0.03313

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2017-7478

CVSS3: 7.5

nvd

около 8 лет назад

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.

CVE-2017-7478

CVSS3: 7.5

debian

около 8 лет назад

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Deni ...

GHSA-3wwj-66cm-595v

CVSS3: 7.5

github

около 3 лет назад

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.

openSUSE-SU-2017:1638-1

suse-cvrf

почти 8 лет назад

Security update for openvpn

SUSE-SU-2017:1622-1

suse-cvrf

почти 8 лет назад

Security update for openvpn

EPSS

Процентиль: 87%

0.03313

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2017-7478

Описание

Пакет openvpn

Ссылки на источники

Связанные уязвимости