Show filters
6 Total Results
Displaying 1-6 of 6
Sort by:
Attacker Value
Unknown

CVE-2017-7520

Disclosure Date: June 27, 2017 (last updated November 26, 2024)
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to denial-of-service and/or possibly sensitive memory leak triggered by man-in-the-middle attacker.
0
0
Attacker Value
Unknown

CVE-2017-7522

Disclosure Date: June 27, 2017 (last updated November 26, 2024)
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to denial-of-service by authenticated remote attacker via sending a certificate with an embedded NULL character.
0
0
Attacker Value
Unknown

CVE-2017-7521

Disclosure Date: June 27, 2017 (last updated November 26, 2024)
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().
0
0
Attacker Value
Unknown

CVE-2017-7508

Disclosure Date: June 27, 2017 (last updated November 26, 2024)
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service when receiving malformed IPv6 packet.
0
0
Attacker Value
Unknown

CVE-2017-7478

Disclosure Date: May 15, 2017 (last updated November 26, 2024)
OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.
0
0
Attacker Value
Unknown

CVE-2017-7479

Disclosure Date: May 15, 2017 (last updated November 26, 2024)
OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker.
0
0