Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-13086

Опубликовано: 03 дек. 2025
Источник: ubuntu
Приоритет: medium
CVSS3: 7.5

Описание

Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.6.15 and 2.7_alpha1 through 2.7_rc1 allows an attacker to open a session from a different IP address which did not initiate the connection resulting in a denial of service for the originating client

РелизСтатусПримечание
devel

released

2.7.0~rc5-1ubuntu5
esm-infra-legacy/trusty

needs-triage

esm-infra/bionic

not-affected

esm-infra/focal

not-affected

esm-infra/xenial

not-affected

jammy

not-affected

2.5.11-0ubuntu0.22.04.1
noble

released

2.6.14-0ubuntu0.24.04.3
plucky

released

2.6.14-0ubuntu0.25.04.3
questing

released

2.6.14-2ubuntu1.1
upstream

released

2.7.0,2.6.16,2.7.0~rc2-2

Показывать по

Ссылки на источники

7.5 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2025-13086

CVSS3: 7.5
nvd
2 месяца назад

Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.6.15 and 2.7_alpha1 through 2.7_rc1 allows an attacker to open a session from a different IP address which did not initiate the connection resulting in a denial of service for the originating client

debian логотип

CVE-2025-13086

CVSS3: 7.5
debian
2 месяца назад

Improper validation of source IP addresses in OpenVPN version 2.6.0 th ...

github логотип

GHSA-xv5w-q5wq-r3c3

CVSS3: 7.5
github
2 месяца назад

Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.7_rc1 allows an attacker to open a session from a different IP address which did not initiate the connection resulting in a denial of service for the originating client

fstec логотип

BDU:2025-14653

CVSS3: 7.3
fstec
3 месяца назад

Уязвимость функции memcmp() программного обеспечения OpenVPN, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

7.5 High

CVSS3