EPSS
Percentile
74.7%
It was discovered that an authenticated client could trigger an ASSERT() in OpenVPN by sending a too-short control channel packet to the server. This could cause the OpenVPN server to crash and deny access to the VPN to other legitimate users.
access.redhat.com/security/cve/CVE-2014-8104
bugs.archlinux.org/task/42975
forums.openvpn.net/topic17625.html
github.com/OpenVPN/openvpn/commit/c5590a