CVE-2013-2692

2014-05-1314:00:00

flexera

www.cve.org

7.1 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

52.6%

JSON

Cross-site request forgery (CSRF) vulnerability in the Admin web interface in OpenVPN Access Server before 1.8.5 allows remote attackers to hijack the authentication of administrators for requests that create administrative users.

References

openvpn.net/index.php/access-server/download-openvpn-as-sw/531-release-notes-v185.html

osvdb.org/93111

secunia.com/advisories/52802