Lucene search

K
cvelistRedhatCVELIST:CVE-2017-7478
HistoryMay 15, 2017 - 6:00 p.m.

CVE-2017-7478

2017-05-1518:00:00
CWE-617
redhat
www.cve.org

7.3 High

AI Score

Confidence

High

0.236 Low

EPSS

Percentile

96.6%

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.

CNA Affected

[
  {
    "product": "openvpn",
    "vendor": "OpenVPN Technologies, Inc",
    "versions": [
      {
        "status": "affected",
        "version": "2.3.12 and newer"
      }
    ]
  }
]