Описание
The interactive service in OpenVPN 2.6.9 and earlier allows the OpenVPN service pipe to be accessed remotely, which allows a remote attacker to interact with the privileged OpenVPN interactive service.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | Windows only |
| esm-infra-legacy/trusty | not-affected | Windows only |
| esm-infra/bionic | not-affected | Windows only |
| esm-infra/focal | not-affected | Windows only |
| esm-infra/xenial | not-affected | Windows only |
| focal | not-affected | Windows only |
| jammy | not-affected | Windows only |
| mantic | ignored | end of life, was needs-triage |
| noble | not-affected | Windows only |
| trusty/esm | not-affected | Windows only |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS3
Связанные уязвимости
The interactive service in OpenVPN 2.6.9 and earlier allows the OpenVPN service pipe to be accessed remotely, which allows a remote attacker to interact with the privileged OpenVPN interactive service.
The interactive service in OpenVPN 2.6.9 and earlier allows the OpenVP ...
The interactive service in OpenVPN 2.6.9 and earlier allows the OpenVPN service pipe to be accessed remotely, which allows a remote attacker to interact with the privileged OpenVPN interactive service.
Уязвимость программного обеспечения OpenVPN Connect, связанная с недостаточным ограничением канала связи для заданных конечных точек, позволяющая нарушителю повысить свои привилегии и выполнить произвольный код
EPSS
7.5 High
CVSS3