OpenVPN — свободная реализация технологии виртуальной частной сети (VPN) с открытым исходным кодом для создания зашифрованных каналoв типа точка-точка или сервер-клиенты между компьютерами.
Релизный цикл, информация об уязвимостях
График релизов
Количество 203
CVE-2024-4877
OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, le ...
CVE-2024-4877
OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges
SUSE-SU-2025:1131-1
Security update for openvpn
GHSA-5gwv-2q72-gxrm
OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase
CVE-2025-2704
OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase
CVE-2025-2704
OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 ...
CVE-2025-2704
OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase
BDU:2025-05051
Уязвимость функции TLS-crypt-v2 сервера программного обеспечения OpenVPN, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2025:1053-2
Security update for openvpn
SUSE-SU-2025:1053-1
Security update for openvpn
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| CVE-2024-4877 OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, le ... | CVSS3: 8.8 | 0% Низкий | 10 месяцев назад |
 | CVE-2024-4877 OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges | CVSS3: 8.8 | 0% Низкий | 10 месяцев назад |
 | SUSE-SU-2025:1131-1 Security update for openvpn | 0% Низкий | 10 месяцев назад | |
| GHSA-5gwv-2q72-gxrm OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase | CVSS3: 7.5 | 1% Низкий | 10 месяцев назад |
 | CVE-2025-2704 OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase | CVSS3: 7.5 | 1% Низкий | 10 месяцев назад |
| CVE-2025-2704 OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 ... | CVSS3: 7.5 | 1% Низкий | 10 месяцев назад |
| CVE-2025-2704 OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase | CVSS3: 7.5 | 1% Низкий | 10 месяцев назад |
 | BDU:2025-05051 Уязвимость функции TLS-crypt-v2 сервера программного обеспечения OpenVPN, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 3.7 | 1% Низкий | 10 месяцев назад |
| SUSE-SU-2025:1053-2 Security update for openvpn | 0% Низкий | 10 месяцев назад | |
| SUSE-SU-2025:1053-1 Security update for openvpn | 0% Низкий | 11 месяцев назад |
Уязвимостей на страницу