OpenVPN — свободная реализация технологии виртуальной частной сети (VPN) с открытым исходным кодом для создания зашифрованных каналoв типа точка-точка или сервер-клиенты между компьютерами.

Релизный цикл, информация об уязвимостях

Продукт: OpenVPN

Вендор: openvpn

График релизов

Недавние уязвимости OpenVPN

Количество 186

SUSE-SU-2025:01508-1

12 дней назад

Security update for openvpn

EPSS: Низкий

SUSE-SU-2025:1508-1

около 1 месяца назад

Security update for openvpn

EPSS: Низкий

GHSA-c26r-vw7p-2m7h

3 месяца назад

OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges

CVSS3: 8.8

EPSS: Низкий

CVE-2024-4877

3 месяца назад

OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, le ...

CVSS3: 8.8

EPSS: Низкий

CVE-2024-4877

3 месяца назад

CVSS3: 8.8

EPSS: Низкий

SUSE-SU-2025:1131-1

3 месяца назад

Security update for openvpn

EPSS: Низкий

GHSA-5gwv-2q72-gxrm

3 месяца назад

OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase

CVSS3: 7.5

EPSS: Низкий

CVE-2025-2704

3 месяца назад

OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 ...

CVSS3: 7.5

EPSS: Низкий

CVE-2025-2704

3 месяца назад

OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase

CVSS3: 7.5

EPSS: Низкий

CVE-2025-2704

3 месяца назад

OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
SUSE-SU-2025:01508-1 Security update for openvpn		0% Низкий	12 дней назад
SUSE-SU-2025:1508-1 Security update for openvpn		0% Низкий	около 1 месяца назад
GHSA-c26r-vw7p-2m7h OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges	CVSS3: 8.8	0% Низкий	3 месяца назад
CVE-2024-4877 OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, le ...	CVSS3: 8.8	0% Низкий	3 месяца назад
CVE-2024-4877 OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges	CVSS3: 8.8	0% Низкий	3 месяца назад
SUSE-SU-2025:1131-1 Security update for openvpn		0% Низкий	3 месяца назад
GHSA-5gwv-2q72-gxrm OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase	CVSS3: 7.5	0% Низкий	3 месяца назад
CVE-2025-2704 OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 ...	CVSS3: 7.5	0% Низкий	3 месяца назад
CVE-2025-2704 OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase	CVSS3: 7.5	0% Низкий	3 месяца назад
CVE-2025-2704 OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase	CVSS3: 7.5	0% Низкий	3 месяца назад

Уязвимостей на страницу