CVE-2017-7479

Опубликовано: 15 мая 2017

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 4

CVSS3: 6.5

Описание

OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker.

Релиз	Статус	Примечание
artful	not-affected	2.4.0-5ubuntu1
bionic	not-affected	2.4.0-5ubuntu1
cosmic	not-affected	2.4.0-5ubuntu1
devel	not-affected	2.4.0-5ubuntu1
disco	not-affected	2.4.0-5ubuntu1
eoan	not-affected	2.4.0-5ubuntu1
esm-infra-legacy/trusty	not-affected	2.3.2-7ubuntu3.2
esm-infra/bionic	not-affected	2.4.0-5ubuntu1
esm-infra/focal	not-affected	2.4.0-5ubuntu1
esm-infra/xenial	not-affected	2.3.10-1ubuntu2.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 80%

0.01429

Низкий

4 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-7479

CVSS3: 6.5

nvd

около 8 лет назад

OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker.

CVE-2017-7479

CVSS3: 6.5

debian

около 8 лет назад

OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reac ...

GHSA-qhqf-49x5-89w6

CVSS3: 6.5

github

около 3 лет назад

OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker.

openSUSE-SU-2017:1638-1

suse-cvrf

почти 8 лет назад

Security update for openvpn

SUSE-SU-2017:1622-1

suse-cvrf

почти 8 лет назад

Security update for openvpn

EPSS

Процентиль: 80%

0.01429

Низкий

4 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2017-7479

Описание

Пакет openvpn

Ссылки на источники

Связанные уязвимости