Описание
The interactive service in OpenVPN 2.6.9 and earlier allows an attacker to send data causing a stack overflow which can be used to execute arbitrary code with more privileges.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | Windows only |
| esm-infra-legacy/trusty | not-affected | Windows only |
| esm-infra/bionic | not-affected | Windows only |
| esm-infra/focal | not-affected | Windows only |
| esm-infra/xenial | not-affected | Windows only |
| focal | not-affected | Windows only |
| jammy | not-affected | Windows only |
| mantic | ignored | end of life, was needs-triage |
| noble | not-affected | Windows only |
| trusty/esm | not-affected | Windows only |
Показывать по
Ссылки на источники
EPSS
7.8 High
CVSS3
Связанные уязвимости
The interactive service in OpenVPN 2.6.9 and earlier allows an attacker to send data causing a stack overflow which can be used to execute arbitrary code with more privileges.
The interactive service in OpenVPN 2.6.9 and earlier allows an attacke ...
The interactive service in OpenVPN 2.6.9 and earlier allows an attacker to send data causing a stack overflow which can be used to execute arbitrary code with more privileges.
Уязвимость программного обеспечения OpenVPN Connect, связанная с переполнением буфера в стеке, позволяющая нарушителю повысить свои привилегии и выполнить произвольный код
EPSS
7.8 High
CVSS3