OpenVPN 2.4.10

CPE Details

OpenVPN 2.4.10
openvpn
openvpn
2.4.10
2021-04-30
11h30 +00:00
2023-11-27
19h07 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:openvpn:openvpn:2.4.10:*:*:*:*:*:*:*

Informations

Vendor

openvpn

Product

openvpn

Version

2.4.10

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2022-0547 2022-03-18 17h00 +00:00 OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass in external authentication plug-ins when more than one of them makes use of deferred authentication replies, which allows an external user to be granted access with only partially correct credentials.
9.8
Critique
CVE-2021-3606 2021-07-02 10h30 +00:00 OpenVPN before version 2.5.3 on Windows allows local users to load arbitrary dynamic loadable libraries via an OpenSSL configuration file if present, which allows the user to run arbitrary code with the same privilege level as the main OpenVPN process (openvpn.exe).
7.8
Haute
CVE-2020-15078 2021-04-26 11h19 +00:00 OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks.
7.5
Haute