OpenVPN — свободная реализация технологии виртуальной частной сети (VPN) с открытым исходным кодом для создания зашифрованных каналoв типа точка-точка или сервер-клиенты между компьютерами.

Релизный цикл, информация об уязвимостях

Продукт: OpenVPN

Вендор: openvpn

График релизов

Недавние уязвимости OpenVPN

Количество 186

openSUSE-SU-2017:2892-1

больше 7 лет назад

Security update for openvpn

EPSS: Низкий

SUSE-SU-2017:2839-1

больше 7 лет назад

Security update for openvpn

EPSS: Низкий

CVE-2017-12166

больше 7 лет назад

OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution.

CVSS3: 9.8

EPSS: Низкий

CVE-2017-12166

больше 7 лет назад

OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to ...

CVSS3: 9.8

EPSS: Низкий

CVE-2017-12166

больше 7 лет назад

OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution.

CVSS3: 9.8

EPSS: Низкий

CVE-2017-7522

почти 8 лет назад

OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to denial-of-service by authenticated remote attacker via sending a certificate with an embedded NULL character.

CVSS3: 6.5

EPSS: Низкий

CVE-2017-7522

почти 8 лет назад

OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to deni ...

CVSS3: 6.5

EPSS: Низкий

CVE-2017-7521

почти 8 лет назад

OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().

CVSS3: 5.9

EPSS: Низкий

CVE-2017-7521

почти 8 лет назад

OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remo ...

CVSS3: 5.9

EPSS: Низкий

CVE-2017-7520

почти 8 лет назад

OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to denial-of-service and/or possibly sensitive memory leak triggered by man-in-the-middle attacker.

CVSS3: 7.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
openSUSE-SU-2017:2892-1 Security update for openvpn		5% Низкий	больше 7 лет назад
SUSE-SU-2017:2839-1 Security update for openvpn		5% Низкий	больше 7 лет назад
CVE-2017-12166 OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution.	CVSS3: 9.8	5% Низкий	больше 7 лет назад
CVE-2017-12166 OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to ...	CVSS3: 9.8	5% Низкий	больше 7 лет назад
CVE-2017-12166 OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution.	CVSS3: 9.8	5% Низкий	больше 7 лет назад
CVE-2017-7522 OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to denial-of-service by authenticated remote attacker via sending a certificate with an embedded NULL character.	CVSS3: 6.5	1% Низкий	почти 8 лет назад
CVE-2017-7522 OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to deni ...	CVSS3: 6.5	1% Низкий	почти 8 лет назад
CVE-2017-7521 OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().	CVSS3: 5.9	1% Низкий	почти 8 лет назад
CVE-2017-7521 OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remo ...	CVSS3: 5.9	1% Низкий	почти 8 лет назад
CVE-2017-7520 OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to denial-of-service and/or possibly sensitive memory leak triggered by man-in-the-middle attacker.	CVSS3: 7.4	1% Низкий	почти 8 лет назад

Уязвимостей на страницу