Количество 3
Количество 3
CVE-2023-27395
A heap-based buffer overflow vulnerability exists in the vpnserver WpcParsePacket() functionality of SoftEther VPN 4.41-9782-beta, 5.01.9674 and 5.02. A specially crafted network packet can lead to arbitrary code execution. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.
GHSA-33mh-qwc8-jxxx
A heap-based buffer overflow vulnerability exists in the vpnserver WpcParsePacket() functionality of SoftEther VPN 4.41-9782-beta, 5.01.9674 and 5.02. A specially crafted network packet can lead to arbitrary code execution. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.
BDU:2023-05451
Уязвимость функции динамического DNS (DDNS) VPN-клиента SoftEther VPN, позволяющая нарушителю выполнить произвольный код
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-27395 A heap-based buffer overflow vulnerability exists in the vpnserver WpcParsePacket() functionality of SoftEther VPN 4.41-9782-beta, 5.01.9674 and 5.02. A specially crafted network packet can lead to arbitrary code execution. An attacker can perform a man-in-the-middle attack to trigger this vulnerability. | CVSS3: 9 | 1% Низкий | больше 2 лет назад |
| GHSA-33mh-qwc8-jxxx A heap-based buffer overflow vulnerability exists in the vpnserver WpcParsePacket() functionality of SoftEther VPN 4.41-9782-beta, 5.01.9674 and 5.02. A specially crafted network packet can lead to arbitrary code execution. An attacker can perform a man-in-the-middle attack to trigger this vulnerability. | CVSS3: 9 | 1% Низкий | больше 2 лет назад |
 | BDU:2023-05451 Уязвимость функции динамического DNS (DDNS) VPN-клиента SoftEther VPN, позволяющая нарушителю выполнить произвольный код | CVSS3: 9 | 1% Низкий | больше 2 лет назад |
Уязвимостей на страницу