Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2024-27903

Опубликовано: 08 июл. 2024
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 9.8

Описание

OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory, which allows an attacker to load an arbitrary plug-in which can be used to interact with the privileged OpenVPN interactive service.

РелизСтатусПримечание
devel

not-affected

Windows only
esm-infra-legacy/trusty

not-affected

Windows only
esm-infra/bionic

not-affected

Windows only
esm-infra/focal

not-affected

Windows only
esm-infra/xenial

not-affected

Windows only
focal

not-affected

Windows only
jammy

not-affected

Windows only
mantic

ignored

end of life, was needs-triage
noble

not-affected

Windows only
trusty/esm

not-affected

Windows only

Показывать по

Ссылки на источники

EPSS

Процентиль: 91%
0.06993
Низкий

9.8 Critical

CVSS3

Связанные уязвимости

nvd логотип

CVE-2024-27903

CVSS3: 9.8
nvd
12 месяцев назад

OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory, which allows an attacker to load an arbitrary plug-in which can be used to interact with the privileged OpenVPN interactive service.

debian логотип

CVE-2024-27903

CVSS3: 9.8
debian
12 месяцев назад

OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be lo ...

github логотип

GHSA-63q4-8wcf-wg8f

CVSS3: 7.2
github
12 месяцев назад

OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory, which allows an attacker to load an arbitrary plug-in which can be used to interact with the privileged OpenVPN interactive service.

fstec логотип

BDU:2024-05533

CVSS3: 9.8
fstec
около 1 года назад

Уязвимость компонента Plug-in Handler программного обеспечения OpenVPN, позволяющая нарушителю загружать произвольные модули

EPSS

Процентиль: 91%
0.06993
Низкий

9.8 Critical

CVSS3